{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreidcfy3otmga3rmyqm647e62klnmzoq5enxmpxzsubkhityw2gwduu",
    "uri": "at://did:plc:gapzbf5nl5wxaqkqoecaeawh/app.bsky.feed.post/3miv25q6aa4j2"
  },
  "path": "/bad-actor-drops-36-malicious-packages-in-npm-targets-guardarian-users/",
  "publishedAt": "2026-04-06T16:43:23.000Z",
  "site": "https://devops.com",
  "tags": [
    "DevSecOps",
    "Features",
    "News",
    "Social - Facebook",
    "Social - LinkedIn",
    "Social - X",
    "credentials",
    "cryptocurrency",
    "docker containers",
    "Guardarian",
    "kubernetes",
    "Lazarus Group",
    "npm malware",
    "Python",
    "Redis",
    "SafeDep",
    "Secrets",
    "Shai-Hulud",
    "software supply chain attacks",
    "sonatype",
    "Strapi"
  ],
  "textContent": "The npm code repository is again being used by a bad actor to launch a supply chain attack that includes three dozen malicious packages that appear as Strapi CMS plugins but deliver a range of threats. Strapi is a popular open source headless Node.js content management system developers use to build, manage, and expose content […]",
  "title": "Bad Actor Drops 36 Malicious Packages in npm, Targets Guardarian Users"
}