My personal take on the malware situation is available at http://wiki.apidesign.org/wiki/Malware -jt
ne 31. 5. 2020 v 19:08 odesÃlatel Geertjan Wielenga <geert...@apache.org> napsal: > Hi all, > > I propose we publish the following on the Apache NetBeans blog re the > recent announcement by GitHub researchers of malware found in some NetBeans > generated projects on GitHub. > > Title: Malware Found in 26 NetBeans Ant Projects on GitHub > > Content: > > "Researchers at GitHub have identified 26 projects on GitHub that have been > infected by malware. The malware infiltrates the project structure of > Ant-based applications in the format generated specifically by NetBeans. > The owners of the 26 projects, which are mostly small Java applications, > have been contacted and the infected projects have been set to private on > GitHub. The malware campaign is no longer active, GitHub did not consider > it relevant enough to be in touch with the NetBeans community about it, and > there is no evidence that applications beyond the 26 in question have been > impacted. Be aware that any project structure that you use when developing > applications can be infiltrated by malware and make sure that the files you > check into your versioning system are your own or that you know where they > come from and what they do." > > > Feedback welcome and needed. > > Gj >
