Cybersecurity

Researchers Detect Malicious npm Package Targeting GitHub-Owned Repositories

22652366
Veracode exposes npm package "@acitons/artifact" stealing GitHub tokens via build scripts.
More info
thehackernews.com - Cybersecurity