News
Malware-laced PyPI and npm packages steal developer credentials, CI/CD data, and crypto wallets. Attacks target macOS, AI ...
NPM packages with more than a million weekly downloads were compromised to deliver a RAT The attack could turn into a major ...
A significant supply chain attack hit NPM after 15 popular Gluestack packages with over 950,000 weekly downloads were ...
Deno Land recently released Deno 2.3, an update of the Deno runtime that adds support for local NPM packages. Deno 2.3 also ...
Two malicious NPM packages contain code that would delete production systems when triggered with the right credentials.
Two malicious packages have been discovered in the npm JavaScript package index, which masquerades as useful utilities but, ...
The packages carry backdoors that first collect environment information and then delete entire application directories.
Security researchers at Veracode stumbled upon two seemingly harmless software packages on the npm repository.
Results that may be inaccessible to you are currently showing.
Hide inaccessible results