In very unsurprising news:
Some dude's "cryptocurrency for open source" scheme leads - as a surprise to noone - to more spam (
) . People deploying bullshit packages that do nothing but that they try to get somewhere into the dependency chain to get crypto tokens.
This isn't just a crypto issue of course. It's similar to @404 Media's research on why there is so much generativeAI spam on Facebook (
): If you give people a way to make money through spam someone will do that. You might think the few bucks or not worth it but somewhere on the planet they are.
Phylum Research | Software Supply Chain Security
The Great npm Garbage Patch | Phylum
Open-source spam is a growing threat. The Tea protocol and npm are taking action, but the problem persists. Our research is dedicated to combating ...
404 Media
Where Facebook's AI Slop Comes From
Facebook itself is paying creators in India, Vietnam, and the Philippines for bizarre AI spam that they are learning to make from YouTube influence...