Supply-chain threat intelligence
Risk score
92
Indexed incident for org.mvnpm:posthog-node (maven).
This package was compromised by the Sha1-Hulud: The Second Coming NPM worm.
The malicious payload steals tokens and credentials and publishes them to
GitHub. The worm will propogate itself to NPM packages the user owns and
establish persistence is a GitHub action.
The package may also destroy the user's home directory.
Indicators
Timeline