{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreibcstprjayhxa2akqbkw34qnd5e4woiw4cq7hvseoglmyhfe6aqiy",
    "uri": "at://did:plc:f2fwojywviapy7mx4uk5sf4d/app.bsky.feed.post/3mk5vsjv2xuq2"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreibqep5lfrrwumy2asxe2bnfpkb3ubstsp7t2cvrsrgazzk5esdopq"
    },
    "mimeType": "image/png",
    "size": 500790
  },
  "path": "/three-supply-chain-campaigns-hit-npm-pypi-and-docker-hub-in-48-hours/",
  "publishedAt": "2026-04-23T09:32:50.000Z",
  "site": "https://blog.gitguardian.com",
  "tags": [
    "Breach explained"
  ],
  "textContent": "Three supply chain attacks hit npm, PyPI, and Docker Hub between April 21–23, 2026. All three targeted secrets: API keys, cloud credentials, SSH keys, and tokens from developer environments and CI/CD pipelines.",
  "title": "No Off Season: Three Supply Chain Campaigns Hit npm, PyPI, and Docker Hub in 48 Hours"
}