{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreigswbatizw2pjw4p3m4t4plbppmzdnb2zgifo4quwjmw2kbq2hkum",
    "uri": "at://did:plc:iir655mcoipvnewhnkv6fb3u/app.bsky.feed.post/3mhbyvxacajm2"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreift2ryj4ixffraps3d5c3wvoitt5zvzdozo7kgrneg554jrfnz2c4"
    },
    "mimeType": "image/jpeg",
    "size": 184462
  },
  "path": "/news/security/glassworm-malware-hits-400-plus-code-repos-on-github-npm-vscode-openvsx/",
  "publishedAt": "2026-03-17T21:45:16.000Z",
  "site": "https://www.bleepingcomputer.com",
  "tags": [
    "article"
  ],
  "textContent": "\nThe GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, repositories, and extensions on GitHub, npm, and VSCode/OpenVSX extensions.",
  "title": "GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX"
}