npm 10

• AWS Security Digest #262 - Not private May 25, 2026
• Shai-Hulud Is Back, and This Time It Ate the Whole Ecosystem May 21, 2026
• Backdoored node-ipc npm releases steal developer credentials through DNS queries May 14, 2026
• Backdoored Cemu release linked to TanStack and Mistral supply chain campaign May 14, 2026
• Shai-Hulud Goes Open Source May 13, 2026
• Mini Shai-Hulud Strikes Again: TanStack + more npm Packages Compromised May 12, 2026
• The Good, the Bad and the Ugly in Cybersecurity – Week 18 May 1, 2026
• The case for dependency cooldowns in a post-axios world Apr 17, 2026
• CI/CD security: How to secure your GitHub ecosystem Apr 9, 2026
• Six Accounts, One Actor: Inside the prt-scan Supply Chain Campaign Apr 4, 2026