Config Files That Run Code: Supply Chain Security Blindspot
Editor and package-manager config files auto-execute commands when a developer opens a folder or installs dependencies. The Miasma worm wired one dropper into seven of them across Claude Code…
Read the full articleYou might also wanna read
Config File Auto-Execution Creates Supply Chain Security Blindspot Across IDEs and Package Managers
Editor and package-manager config files auto-execute commands when a developer opens a folder or installs dependencies. The Miasma worm wire
Miasma supply-chain attack targets AI coding assistants, forcing GitHub to disable 73 repositories
GitHub disabled 73 repositories across four Microsoft organizations on June 5 after the self-replicating supply-chain campaign known as Mias

Miasma supply chain attack: malicious code found in @redhat-cloud-services npm packages
A supply chain worm dubbed Miasma has been found in dozens of @redhat-cloud-services npm releases. The malicious preinstall hook steals cred
Undocumented Claude Code Features Revealed Through Source Code Analysis
Hook fields that rewrite commands mid-flight, persistent agent memory, auto-mode rules in plain English, self-improving dream loops, and eve
Red Hat npm packages compromised in Miasma supply chain attack exposing developer credentials
Wiz tracks the campaign as Miasma, described as the latest evolution of Shai-Hulud, a self-propagating malware family seen in npm software s
GitHub disables 73 Microsoft repositories after detecting Miasma worm supply chain attack
Miasma worm shapeshifts, but cloud secret-scouting remains the goal

Comments
Sign in to join the conversation.
No comments yet. Be the first.