---

Vulnerable API Exposes Private npm Packages

Aqua Nautilus security researchers have revealed that threat actors could perform a timing attack on npm’s API to uncover private npm packages. Learn more here.

Get the Free Newsletter!

Subscribe to Developer Insider for top news, trends, & analysis