|
|
|
|
|
|
by cosmodev
276 days ago
|
|
|
On September 8–9, 2025, a major NPM supply chain attack compromised packages like chalk, debug, and strip-ansi.
We built an open source tool (guard-deps) to scan repos and remediate malicious versions.
This post summarizes the attack details and provides a full list of compromised versions. |
|
|