PANews|3月 31, 2026 05:04
[Alert: Active Supply Chain Attack on npm Core Package axios Version 1.14.1]
According to Cointelegraph, Socket has detected an active supply chain attack targeting version 1.14.1 of the npm core package axios. The attacker injected malicious code into axios via a newly introduced malicious dependency package that appeared for the first time today. Developers using axios are advised to immediately lock the version and review project lock files.
Share To
Timeline
HotFlash
APP
X
Telegram
CopyLink