30
Almost got scammed on GitHub - watch out for fake repos
I was at a hackathon last Saturday and almost downloaded a repo that claimed it was a popular npm package but had sketchy code inside. Someone nearby stopped me right before I ran it. Has anyone else nearly grabbed malware from a lookalike library?
2 comments
Log in to join the discussion
Log In2 Comments
margaretrivera1mo ago
Whoa, that's wild. Honestly though, I bet a ton of those fake repos are made by people who just copy-paste someone else's code and add malware without even knowing how it works.
7
skyler_anderson651mo ago
Nah, I bet most of them know exactly what they're doing lol.
10