{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreieoxoaezettwteumksb2pq7ccdhqeki7233sryy5ydp5beiync3t4",
    "uri": "at://did:plc:ghkvexthfanuyq7fb5veq6tw/app.bsky.feed.post/3mknoiouayhu2"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreife6zh6jhypd47gzlqjvrrlmi3w4fsczqt4d2fd7kzmhjn45lxbsu"
    },
    "mimeType": "image/jpeg",
    "size": 548191
  },
  "path": "/2026/04/sap-npm-packages-compromised-by-mini.html",
  "publishedAt": "2026-04-29T16:26:00.000Z",
  "site": "https://thehackernews.com",
  "textContent": "Cybersecurity researchers are sounding the alarm about a new supply chain attack campaign targeting SAP-related npm Packages with credential-stealing malware.\nAccording to reports from Aikido Security, SafeDep, Socket, StepSecurity, and Google-owned Wiz, the campaign – calling itself the mini Shai-Hulud – has affected the following packages associated with SAP's JavaScript and cloud application",
  "title": "SAP-Related npm Packages Compromised in Credential-Stealing Supply Chain Attack"
}