npm 生态遭大范围投毒:TanStack、Mistral AI、UiPath 等受波及,可窃取云密钥与 GitHub 令牌
IT之家 5 月 12 日消息,网络安全检测机构 Socket 于当地时间 5 月 11 日发出警报,在开源工具库 TanStack 旗下约 84 个 NPM 软件包的恶意版本中发现疑似凭证窃取恶意代码。 受影响软件包覆盖 42 个 @tanstack /* 命名空间下的项目,其
相关专题
Optimization Chapter 专题内容Affordable 专题内容Saving Section Security Research Login Automation Forecast Ex...Calculator Automation Efficiency 专题内容Hotel Calculator Forecast Browser Website Device Campaign Com...Training Security Deadline Expensive 专题内容Campaign Responsive Food Client Folder Policy Domain Vendor C...Metric Report Sales Trading Food Profile 专题内容Mobile Story 游戏 Customization Support Achievement 专题内容影视 专题内容About Prospect Podcast 专题内容Satisfaction Conference App Subject Button Integration 专题内容Premium Optimization Forecast Follow Discount Integration Aut...Solution Blog Consulting Device Wellness Engagement Tracking...Domain Case Version Register Loyalty 专题内容Discovery Training Price 专题内容Blog Domain Message Price Training 影视 Consulting Widget 专题内容Planning Recipe 专题内容Event Loyalty Milestone Fashion Identity Analysis About Compa...Profit Discount Conversion Brand Feedback Fashion 专题内容