Supply Chain Attack
Researchers Disclose "Miasma" Supply-Chain Wave Across 20+ npm Packages and GitHub Actions
Another JavaScript-ecosystem supply-chain disclosure puts developer-secret rotation and GitHub Actions auditing back at the top of the defender to-do list — this time as a fresh wave of the ongoing Miasma cluster.