Shai-Hulud 2.0 Supply Chain Compromise

Multiple npm packages were compromised via account takeover, adding a stealthy loader to package.json that targets the Bun runtime. No Vercel environment was impacted. Vercel reset caches for affected projects and is notifying a small set of customers with impacted builds.