Software Supply Chain

Self-Publishing 'IndonesianFoods' Worm Floods npm With More Than 100,000 Spam Packages

The campaign exploits a manual-execution script to bypass common npm security checks.