npm supply chain securityL'alerte : Les packages npm en lesquels vos projets ont confiance sont devenus le vecteur d'attaqueHow two separate waves in September 2025 turned trusted JavaScript libraries into delivery vehicles for crypto theft and self-spreading wormsnpm Supply Chain AttackJavaScript SecuritySoftware Supply ChainOpen Source SecurityPatch Tuesday·Jun 12, 2026·6 min readLire l'article