Protect your enterprise now from the Shai-Hulud worm and npm vulnerability in 6 actionable steps

TanStack had 2FA, OIDC publishing, and Sigstore provenance on every release. The Mini Shai-Hulud worm published 84 malicious ...
BankInfoSecurity

Mass Supply-Chain Attack Slams npm and PyPi, Hits Mistral AI

A new Shai-Hulud variant has infected multiple npm repositories and jumped to other widely used JavaScript and Python ...