ARCHIVE/xrpl-dev-portal
1
0
Fork 0
mirror of https://github.com/XRPLF/xrpl-dev-portal.git synced 2025-11-18 18:55:49 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add missing URL

Browse Source
This commit is contained in:
amarantha-k
2025-04-25 11:59:43 -07:00
parent 403548d502
commit 22a4385928
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
blog/2025/vulnerabilitydisclosurereport-bug-apr2025.md
View File

@@ -61,7 +61,7 @@ A joint investigation team inside of Ripple confirmed that the phishing attack s
### Remediation
* Affected `xrpl` versions in npm have been identified and deprecated. We have reached out to npm for assistance with unpublishing them entirely.
* New versions of the affected packages have been published. See [here]().
* New versions of the affected packages have been published. See [here](https://github.com/XRPLF/xrpl.js/pull/2971).
* Improved User Security
* The compromised user has been removed as a maintainer of all XRPL-related npm packages; the root cause of the user compromise has been identified and resolved.
* Ripple and the XRPLF have enabled 2FA for all users in npmjs.com.