compromise
Megalodon chums the waters in 5.5K+ GitHub repo poisonings
https://www.theregister.com/security/2026/05/22/megalodon-chums-the-waters-in-55k-github-repo-poisonings/5245342
Added 1 day ago
Mini Shai-Hulud Strikes Again: 317 npm Packages Compromised - Real-time Open Source Software Supply Chain Security
https://safedep.io/mini-shai-hulud-strikes-again-314-npm-packages-compromised/
Added 2 days ago
Postmortem: TanStack NPM supply-chain compromise
https://tanstack.com/blog/npm-supply-chain-compromise-postmortem
Added 1 week ago