Malicious code in @redhat-cloud-services/frontend-components-testing (npm)

Part of the "Mini Shai-Hulud" supply chain worm campaign that compromised the GitHub Actions OIDC trusted publisher shared by Red Hat Cloud Services npm packages. The attacker injected a preinstall hook into this and 31 other packages in the @redhat-cloud-services scope. The hook delivers a...

Malicious code in frontend-testing-redefined (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 85a3ef574dfd16ebf3d9533ff76d09cb94946f1acc9fb1708fc6239061a77c88 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...