Security Boulevard

Frequently Asked Questions About the Axios npm Supply Chain Attack by North Korea-Nexus Threat Actor UNC1069

A North Korea-nexus threat actor compromised the widely used axios npm package, delivering a cross-platform remote access ...
Microsoft

Mitigating the Axios npm supply chain compromise

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...
GitHub

malicious_url_detector.py.py

radial-gradient(1200px 600px at 10% 10%, rgba(34,197,94,.25), transparent 60%), radial-gradient(900px 500px at 90% 20%, rgba(56,189,248,.18), transparent 60%), radial ...
GitHub

SKILL.md

Real-time prompt injection and command injection detection for OpenClaw agents. Screens incoming messages, tool results, GitHub issues, and external content for malicious patterns before the agent ...