A new supply chain attack has infected 73 npm packages with a credential stealer. These malicious packages execute upon installation, posing a significant risk to AI development environments and data security. Developers should carefully vet all third-party dependencies to prevent unauthorized access to sensitive credentials.
Opening Kapyn…