| ▲ | awongh 3 hours ago | |
I meant the attack would be the other way around- if an infected package had the git.exe file in their root. Or, the infected package could also copy that file into the parent project's root. | ||
| ▲ | beart 2 hours ago | parent [-] | |
Oh yeah that's a good point - two layers of auto executing scripts/binaries. | ||