1 comment

[ 3.3 ms ] story [ 16.2 ms ] thread
ouch. So... debug has 55k+ packages dependent on it. Is this a real vulnerability or did someone figure out how to spoof the github advisory database?