Npm-scan: Modern supply chain security for the npm ecosystem
(news.ycombinator.com)
1.
2.
Hackers compromise Axios npm package to drop cross-platform malware
(bleepingcomputer.com)