I know very little about the technical side of anything Java. Those of you who are wiser, could be please look at these 2 articles and help the rest of us to understand how and where - if at all - this poses risks on the z/OS machine side, as well as on the platforms connected to z/OS and to our non-MF work environments in general (mine is Win10). Thanks.
https://www.reddit.com/r/programming/comments/qdlela/breaking_npm_package_uaparserjs_with_more_than_7m/ https://www.bleepingcomputer.com/news/security/popular-npm-library-hijacked-to-install-password-stealers-miners/ ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
