mini shai - Robuta Search

https://www.stepsecurity.io/blog/a-mini-shai-hulud-has-appeared A Mini Shai-Hulud Has Appeared: Obfuscated Bun Runtime Payloads Hit SAP-Related npm Packages -... StepSecurity has detected a new npm supply chain attack campaign using preinstall hooks to download the Bun JavaScript runtime and execute an 11 MB obfuscated... mini shai hulud appeared bun runtime https://www.endorlabs.com/learn/mini-shai-hulud-npm-worm-hits-sap-developer-packages Mini Shai-Hulud: npm Worm Hits SAP Developer Packages | Blog | Endor Labs Four SAP npm packages were weaponized to steal GitHub, cloud, and AI coding tool secrets. The malware uses Bun to slip past Node-based detection. mini shai blog endor hulud npm worm https://www.aikido.dev/blog/pytorch-lightning-pypi-compromise-mini-shai-hulud Popular PyTorch Lightning Package Compromised by Mini Shai-Hulud Apr 30, 2026 - Malware found in popular PyTorch Lightning version 2.6.2 and 2.6.3, stealing credentials, crypto wallets, and VPN configs as part of the Mini Shai-Hulud... pytorch lightning mini shai popular package compromised https://semgrep.dev/blog/2026/sap-npm-packages-compromised-in-supply-chain-attack-using-obfuscated-bun-runtime-payload/ SAP Cloud Build Tool Packaged A Mini Shai-Hulud Malicious Dependency That Uses Bun | Semgrep SAP npm Packages Compromised in Supply Chain Attack Using Obfuscated Bun Runtime Payload sap cloud build tool mini shai packaged hulud https://borncity.com/blog/2026/04/30/mini-shai-hulud-lieferkettenangriff-auf-sap-npm-pakete-stehlen-anmeldedaten/ Mini Shai-Hulud Lieferkettenangriff auf SAP npm-Pakete; stehlen Anmeldedaten (29.4.2026)Borns IT-... Apr 30, 2026 - Es hat wohl einen „Mini Shai-Hulud“ genannten Lieferkettenangriff auf diverse npm-Pakete (SAP-CAP), die von SAP in der Entwicklung verwendet werden, gegeben. mini shai hulud auf sap npm