A new supply chain attack compromises 73 npm packages with a credential-stealing malware. This malware activates upon installation, posing a significant risk to AI agents and developers using these packages. The attack highlights ongoing vulnerabilities in the software supply chain, requiring vigilance in package selection and security practices.
Opening Kapyn…