Bun

supply-chain 2026-06-01
Red Hat Cloud Services npm Packages Hijacked in 'Miasma' Shai-Hulud Worm
A Mini Shai-Hulud wave dubbed 'Miasma' poisoned ~30 @redhat-cloud-services npm packages on June 1 via a compromised CI/CD pipeline, dropping a Bun-based credential stealer with a destructive dead-man switch.
supply-chain npm shai-hulud miasma red-hat teampcp credential-theft ci-cd bun github-actions kubernetes
supply-chain 2026-05-01
Mini Shai-Hulud: SAP, Intercom, and PyTorch Lightning Hit by Bun-Based Stealer in 48-Hour TeamPCP Cascade
TeamPCP's Mini Shai-Hulud campaign poisoned SAP CAP, Intercom, and PyTorch Lightning packages on April 29-30 with a Bun-runtime credential stealer that scrapes secrets directly from CI runner memory.
supply-chain npm pypi teampcp shai-hulud sap intercom pytorch-lightning bun credential-theft ci-cd

Red Hat Cloud Services npm Packages Hijacked in 'Miasma' Shai-Hulud Worm