This week, PyPI and NuGet open source repositories have been flooded with more than a hundred spam “Roblox” packages pointing to bogus links. Additionally, npm, the largest NodeJS package registry has also been seen battling spam packages.
Article Link: PyPI, NuGet, npm Flooded with Roblox and Fortnite Spam: What Draws OSS Attackers to Gamers?