Poisoned VS Code extension exposes 3,800 GitHub repos
A TeamPCP supply-chain campaign used Nx Console and related packages to steal developer credentials from GitHub, OpenAI and Mistral environments.
1 verified stories covering Supply-chain attacks, product updates and industry developments.