An attack on NPM? And explaining exactly what is Edge computing
Let's go over a recent update with NPM where it underwent an attack campaign with stolen OAUTH tokens and going over edge computing.
š News

GitHub Security @GitHubSecurity
GitHub has uncovered evidence that an attacker abused stolen OAuth user tokens issued to two third-party OAuth integrators, Heroku and Travis-CI. Read more about the impact to GitHub, npm, and our users. https://t.co/eB7IJfJfh1Back in April GitHub released a blog post detailing an attack campaign with stolen OAuth user tokens. The investigation was still ongoing so this article covers several interesting tidbits on the attack!
Essentially the initial breakthrough by the hacker/bad actor was done with third-party integrations tokens from Heroku and TravisCI. From there they essentially went down a rabbit hole of different integrations and functionalities to obtain the login information for 100k+ users as well as a ton of private repository information ranging from secret keys to private company data.
If you happened to be affected GitHub ideally would have notified you already.
This is just another reminder to not have any sensitive information in your repository even if itās private (unless itās a secret that can only be accessed from the GitHub portal).
Full article:
Full attack on NPM article with OAUTH tokens


āThe Edgeā is quickly becoming a buzzword and concept that is spreading like wildfire. Many call it the future of web application sites. But what exactly does it mean?
In the article, Austin Gil goes over edge computing making a cute analogy with knitting dog hats.
Letās break down the definitions he goes over:
Compute - Anything a machine returns something
Edge - As close as possible to the clientās browser/machine/what have you
Essentially edge computing is bringing to the client the application (maybe HTML?) or API results as close as possible. The biggest benefit of this is that it lowers the response time from the server to the user.
Check out the article for a full explanation.
š¦ More interesting Articles
ā React
šØ CSS
š§ Other
Create your profile
Only paid subscribers can comment on this post
Check your email
For your security, we need to re-authenticate you.
Click the link we sent to , or click here to sign in.