Shai-Hulud malware attack: Tinycolor and over 40 NPM packages compromised

[lxe]

I'm surprised this is happening now, and not 10 years ago.

[keyle]

We're seeing it now...

NPM gets a lot of traffic, there might be other package managers out there, in different languages, that may have been infected in the past and simply don't get the same amount of eyeballs.