progscrape: safedep.io

Someone compromised SAP's npm packages and used the CI pipeline against itself

12 days ago safedep.io

@fairwords npm packages compromised by a self-propagating credential worm - steals tokens, infects other packages you own, then crosses to PyPI

33 days ago safedep.io

Someone is actively publishing malicious packages targeting the Strapi plugin ecosystem right now

38 days ago safedep.io

Dependency cooldown using the publish age as a signal for package resolution

25 days ago safedep.io signal

axios 1.14.1 and 0.30.4 on npm are compromised - dependency injection via stolen maintainer account

41 days ago safedep.io javascript

TeamPCP strikes again - telnyx 4.87.1 and 4.87.2 on PyPI are malicious

45 days ago safedep.io

Malicious litellm 1.82.8: Credential Theft and Persistent Backdoor

48 days ago safedep.io

Using CEL's now() to enforce dependency cooldown periods - block packages published in the last N hours

2 months ago safedep.io javascript

Agent Skills Threat Model

3 months ago safedep.io

Reverse Engineering Malicious Visual Studio Code Extension DarkGPT

5 months ago safedep.io

React RCE vul technical blog

5 months ago safedep.io javascript react

Shai-Hulud Second Coming: Software Supply Chain Attack Exposing Code and Harvesting Credentials

5 months ago safedep.io

Curious Case of Embedded Executable in a Newly Introduced Go Transitive Dependency

6 months ago safedep.io embedded go

Self-replicating worm like behaviour in latest npm Supply Chain Attack

7 months ago safedep.io

TensorFlow.js Typosquatting Attack: Malicious Package Targeting AI/ML Developers

9 months ago safedep.io

eslint-config-prettier Compromised: How npm Package with 30 Million Downloads Spread Malware

9 months ago safedep.io malware

Malicious npm eslint-config-airbnb-compat Package Hides Detection with Payload Splitting

10 months ago safedep.io

Malicious npm Package Impersonating Popular Express Cookie Parser

12 months ago safedep.io parser

>progscrape ▒

All the news that's fit to scrape

Display options