Plexamp pi npm security?

itsamezachary · December 1, 2025, 6:26pm

I read a little bit about the ongoing Shai-Hulud worm running amok with npm. Sounds pretty bad. I’m not a software engineer, but I remember the Plexamp headless for pi app using node.js, so I have to ask.

Do we know that Plexamp headless has not been affected by this?

elan · December 2, 2025, 4:29am

We would have had to update dependencies during the period the malicious packages were active, and we didn’t (or do anything else related). So as far as I know, we’re fine.

Topic		Replies	Views
Plexamp for raspberry pi - plans for newer node versions? Plex Labs plexamp	5	195	October 29, 2022
[request] Plexamp headless - Node requirements Plex Labs plexamp	7	101	January 5, 2025
Plexamp on the Raspberry Pi Plex Labs plexamp	11	20984	July 22, 2022
RPi headless plexamp service not running after update to 4.5.3 Plex Labs plexamp	4	168	February 15, 2023
Plexamp on Pi 64 bit? Plex Labs plexamp	26	698	April 6, 2023

Plexamp pi npm security?

Related topics