{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreih3kookymp4mlvz6lfs5hujpc4ouyqk6u4e5sgx2qsjkuypuwykze",
    "uri": "at://did:plc:ghkvexthfanuyq7fb5veq6tw/app.bsky.feed.post/3mmua4nb6uht2"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreibbgv3l6nrxwvm2cmlvd32e2uiox7imicm3fncvmcmvktbzzssp7a"
    },
    "mimeType": "image/jpeg",
    "size": 137401
  },
  "path": "/2026/05/malicious-npm-package-stole-files-from.html",
  "publishedAt": "2026-05-27T15:44:29.000Z",
  "site": "https://thehackernews.com",
  "textContent": "Cybersecurity researchers have discovered a new malicious package on the npm registry that comes with information stealing capabilities.\n\nAccording to OX Security, the package, named \"mouse5212-super-formatter,\" is designed to upload files from \"/mnt/user-data,\" a dedicated directory used by Anthropic's Claude artificial intelligence (AI) tool to handle uploads and outputs in the background. The",
  "title": "Malicious npm Package Stole Files From Claude AI User Directory via GitHub"
}