Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
North Korean hackers target open-source repositories in new espionage campaign
(
therecord.media
)
18 points
by
PaulHoule
3 months ago
|
hide
|
past
|
favorite
|
3 comments
esafak
3 months ago
|
next
[–]
I don't know about pypi and npm but Github is planning to introduce immutable actions at the end of the year.
https://github.com/github/roadmap/issues/592
esafak
3 months ago
|
parent
|
next
[–]
Just out
https://github.blog/changelog/2025-08-15-github-actions-poli...
hulitu
3 months ago
|
prev
[–]
> npm and PyPI
Yeah, really North Koreans are to blame for the poor security of python echosystem.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
