{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreifkav5w2wtsyduxob7cmtw6ev7cnuvj3ig37bqugcmo5nkokos7e4",
    "uri": "at://did:plc:gapzbf5nl5wxaqkqoecaeawh/app.bsky.feed.post/3mfspyfzifpn2"
  },
  "path": "/malicious-npm-package-gets-downloaded-50k-times-before-discovery/",
  "publishedAt": "2026-02-26T20:01:00.000Z",
  "site": "https://devops.com",
  "tags": [
    "Blogs",
    "DevSecOps",
    "Features",
    "Social - Facebook",
    "Social - LinkedIn",
    "Social - X",
    "ai",
    "APIs",
    "devsecops",
    "NPM",
    "Tenable"
  ],
  "textContent": "A malicious package downloaded approximately 50,000 times from a node package manager (npm) is providing an object lesson for adopting more DevSecOps best practices. Security researchers from Tenable discovered a “ambar-src” package that was first published Feb. 13 and then updated again before being discovered. It is aimed at developers building JavaScript applications on Windows, […]",
  "title": "Malicious NPM Package Gets Downloaded 50K Times Before Discovery"
}