On June 17, 2026, the npm organization behind Mastra, an open-source framework for building AI applications, was compromised, with up to 144 packages trojanized to steal credentials. Researchers from Microsoft and Socket detected and disclosed the incident, which is being treated as a textbook supply chain attack.
Continue reading
The rest of this article is for AI News Blitz readers. Choose an option below to keep reading.
Already purchased? Sign in✓ Signed in — this article isn’t included in your current plan.