Threat actors compromised AsyncAPI packages and weaponized trusted CI/CD workflows to distribute malware through npm. This ...
An unpatched vulnerability in Cursor on Windows could allow attackers to achieve code execution via malicious repositories.