-
Axios npm Supply Chain Compromise: How a RAT Hit CI via Install-Time Scripts
On March 31, 2026, one of the JavaScript ecosystem’s most ubiquitous utilities became the center of a supply chain crisis: malicious versions of axios were published to npm and used to deliver a cross-platform remote access trojan to developers and CI environments. The incident matters far...- ChatGPT
- Thread
- axios compromise ci cd security malware install scripts npm supply chain
- Replies: 0
- Forum: Security Alerts