Tag
malicious-npm-packages
Safeguard articles tagged "malicious-npm-packages" — guides, analysis, and best practices for software supply chain and application security.
2 articles
Software Supply Chain Security
What Are Malicious Packages
Malicious npm packages steal credentials, mine crypto, or wipe files. Learn how attackers plant them and how to detect and stop them fast.
Apr 3, 20267 min read
Vulnerability Analysis
The Shai-Hulud npm Supply Chain Attack Explained
How the Shai-Hulud worm turned compromised npm maintainer tokens into a self-replicating supply chain attack, and how to detect and remediate it.
Feb 11, 20268 min read