Security researchers found 73 packages on a popular developer platform distributing credential-stealing malware. These malicious packages execute immediately upon installation, posing a significant risk to AI agents and their credentials. Developers should exercise extreme caution and verify the integrity of all third-party packages before integration.
Opening Kapyn…