Articles by tag: npm-security
Malicious npm package steals Polymarket bots keys
Learn about the attack via the sleek-pretty package in npm: theft of API keys and SSH backdoors for Polymarket developers. How to protect bots and wallets — read the risk analysis and recommendations.
CanisterWorm in npm: attack after Trivy
Analysis of CanisterWorm worm: ICP C2, theft of npm tokens, systemd persistence. How to protect the supply chain from self-propagation. Analysis for developers.
iOS and npm Exploits Leaks in March 2026
Breakdown of Key Cybersecurity Incidents: Coruna, DarkSword, Axios, Claude Code. Supply Chain Compromises and Regulations. For Developers — How to Protect CI/CD and Source Code. Read the Analysis.
RAT in Axios npm: phantom dependency and Claude Code leak
Analysis of attacks on Axios and Anthropic: RAT via postinstall, sourcemap leak of 512k lines. Checks, IOC, clean-room Python implementation. For middle/senior dev.