突发!Claude Code源码泄漏,系工程师配置疏漏导致!GitHub已疯传

北京时间3月31日下午,Anthropic 核心工具 Claude Code 源码遭意外泄露,被业内公认为 AI 行业历史上最严重的工程安全事故之一。 北京时间 2026 年 3 月 31 日,Anthropic 在其官方 npm 仓库发布 ...
Dark Reading

Supply Chain Attack Deploys Hundreds of Malicious NPM Modules to Steal Data

A routine scan of the NPM open source code repository in April turned up several packages using a JavaScript obfuscator to hide their true function. After further investigation, analysts with ...
InfoWorld

Malicious npm packages contain Vidar infostealer

Malicious code continues to be uploaded to open source repositories, making it a challenge for responsible developers to trust what’s there, and for CISOs to trust applications that include open ...