Browsing: packages

A new malicious campaign linked to the Shai-Hulud worm is making its way throughout the npm ecosystem. According to findings…

At least 187 code packages made available through the JavaScript repository NPM have been infected with a self-replicating worm that…

A significant supply chain attack hit NPM after 16 popular Gluestack ‘react-native-aria’ packages with over 950,000 weekly downloads were compromised to…

Deno Land has released Deno 2.3, an update of the company’s JavaScript and TypeScript runtime that brings improvements to deno…

Six malicious packages have been identified on npm (Node package manager) linked to the notorious North Korean hacking group Lazarus. The…