Attack on axios in npm: how one compromised account put millions of JavaScript projects at risk
A serious incident in the JavaScript ecosystem highlights the growing danger of open source and supply chain attacks. StepSecurity researchers reported the compromise…