Hackers slipped a trojan into the code library behind most of the internet. Your team is probably affected

Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a ...
SecurityWeek

Axios NPM Package Breached in North Korean Supply Chain Attack

North Korean hackers published backdoored versions of the Axios NPM package using a compromised long-lived access token.
GitHub

A small implementation of Concise Binary Object Representation (CBOR) in pure JavaScript.

Note: this package is not 100% compatible with the CBOR specification. See the Not implemented section for more details.
GitHub

A programming language designed by AI agents, for AI agents.

Arc is a modern programming language optimized for AI-driven development, achieving 50%+ cost and efficiency savings through intelligent syntax design, implicit context handling, and token-optimized ...