As many as 144 npm packages associated with the Mastra namespace ("@mastra/*"), a popular open-source JavaScript and TypeScript framework for building artificial intelligence (AI) applications, have been compromised as part of a software supply chain attack codenamed easy-day-js, per findings from...

#AI

Original-Artikel öffnen Zurück zur Übersicht

ARTICLEVIEW

144 Mastra npm Packages Compromised via Hijacked Contributor Account

VERWANDTEARTIKEL

Malicious JetBrains Plugins Steal AI API Keys as Chrome Extensions Capture Chatbot Chats

AIRecon: AI-Powered Penetration Testing Tool with Kali Linux Sandbox

Critical LiteLLM Flaw Allows Authentication Bypass via Host Header Injection

Google Vertex AI SDK Flaw Let Attackers Hijack Model Uploads via Bucket Squatting

Aembit Extends IAM for Agentic AI to Microsoft Copilot Studio

EU-Parlament stimmt zu: Verbot für sexualisierte Deepfake-KI