A new supply chain attack targets AI agents via malicious package. Over 70 packages designed to steal credentials were found and run as soon as they are opened by an AI agent. This highlights a significant security risk for developers relying on third-party code.
Opening Kapyn…