# NPM Packages Attacks

> Source: <https://news.ycombinator.com/item?id=48333319>
> Published: 2026-05-30 06:40:29+00:00

| ||||||||||||
1 point by |
You should read this before you install any #npm package. Because the author mentioned the taking advantage of the #AI #hallucinations but forgot that attackers can also "instruct" AIs to make reference to a malicious package https://blog.gaborkoos.com/posts/2026-05-29-How-to-Evaluate-an-npm-Package-2026-Edition/?utm_source=reddit&utm_medium=social&utm_campaign=how-to-evaluate-an-npm-package-2026-edition&utm_content=r_netsec #infosec #cybersecurity #ethicalhacking #news #privacy | |||||||||||
|