SecurityHacker Newsabout 14 hours ago

Config Files That Run Code: Supply Chain Security Blindspot

1 min read

A config file at.github/setup.js in a repository commit f72462d9 runs a 4.3MB encrypted dropper when a developer opens the project. VS Code Cursor Claude Code and npm agents execute such files by default after a one-time trust prompt. The Miasma worm infected 121 repositories by injecting a single command into config files that are rarely reviewed.

Level

Hype check

Tap to vote and see what everyone thinks.

#config #supply chain #malware

Read full story

More to chew on!

Devabout 4 hours ago

5 Software Supply Chain Security Best Practices for Development Teams

AIabout 10 hours ago

GitHub disables 73 repos after Miasma worm attack

AIabout 8 hours ago