Miasma worm toolkit goes open source on GitHub

Someone open sourced the Miasma supply-chain attack toolkit on GitHub, likely using compromised developer accounts. SafeDep spotted the repos, which contain code for attacking PyPI, npm, RubyGems, JFrog Artifactory, GitHub Actions, and SSH. The worm previously hit over 100 Red Hat and Microsoft projects, with 473 affected artifacts tracked by Socket.