New Blog: Mini Shai-Hulud Strikes Again: 314 npm Packages Compromised

•

19 May 2026

npm

auth-javascript

auth-javascript is identified in the SafeDep analysis "Malicious npm Packages Backdoor Claude Code Sessions". >-

discovered 2026-05-13

Threat types

ratpersistence

Malicious versions

0.0.17

Campaigns

Claude Code Hook Backdoorsattributed-to

Indicators

Techniques

Read the full analysis →