Upwind Security Flags Malicious npm Package Targeting CI/CD Pipelines
Source: Tipranks
Published:
<p>According to a recent post from Upwind Security , the company is drawing attention to a potential supply chain compromise involving the npm package claude-channel-imessage. The post describes a hijacked npm account that allegedly published versions 2.0.4 and 1.0.0 containing a postinstall hook de