Threat actor attempted to slipstream a malware payload into yt-dlp's GitHub repo (twitter.com) 33 points by raybb 1y ago ↗ HN
[–] brutecat 1y ago ↗ To be honest, I doubt it would've gotten merged anyways. [–] pushupentry1219 1y ago ↗ Yeah... This is clearly, obviously, malicious. [–] vintagedave 1y ago ↗ Even the username of the submitter contains "evil". I feel like this has to be more of a joke than a real malware attempt...
[–] pushupentry1219 1y ago ↗ Yeah... This is clearly, obviously, malicious. [–] vintagedave 1y ago ↗ Even the username of the submitter contains "evil". I feel like this has to be more of a joke than a real malware attempt...
[–] vintagedave 1y ago ↗ Even the username of the submitter contains "evil". I feel like this has to be more of a joke than a real malware attempt...
[–] pajko 1y ago ↗ The other thread has more repos listed: https://news.ycombinator.com/item?id=42118097
[–] cedws 1y ago ↗ What does “slipstreamed” mean? Upon first look this just looks like a really lazy attempt, but maybe there’s something I’m missing. Jia Tan was at least clever about it.
5 comments
[ 3.2 ms ] story [ 24.9 ms ] thread