11·
5 months agoDirect linking via a specific CDN was the problem. This is solved by bundlers, not caused by it.
The polyfill.js is a popular open source library to support older browsers. 100K+ sites embed it using the cdn.polyfill.io domain. … However, in February this year, a Chinese company bought the domain and the Github account. Since then, this domain was caught injecting malware on mobile devices via any site that embeds cdn.polyfill.io.
Canonical and Debian both target the professional server space. I’ve spent pretty much my entire career working on Debian-based distros.
Hell, the one company I worked for that I expected to use RHEL used Ubuntu for everything, so 🤷♂️.