Zlonamjerni kodni sažetak u svibnju

Mjesečni sažetak Zlonamjernog koda: svibanj

Welcome to the May edition of the Xygeni Malicious Code Digest. This month, our security research team continued tracking the evolving landscape of software supply chain threats across public package registries, developer tooling, AI-assisted workflows, and modern CI/CD environments. Throughout May, Xygeni identified and validated hundreds of malicious packages targeting npm, PyPI, VS Code, and OpenVSX ecosystems.

But May was not only about volume. It was also a month where attackers increasingly adapted their tradecraft to AI-native development environments, developer trust assumptions, and automated pipelines.

Among the most notable investigations published by the Xygeni Security Team this month:

  • JulesJacker, a multi-stage npm malware campaign impersonating Google’s Jules AI agent to steal repositories, abuse CI/CD environments, and even target the sandbox analyzing it. The campaign introduced encrypted host-gated loaders, forged google-labs-jules[bot] commits, cloud metadata theft, and Kubernetes reconnaissance against analysis infrastructure itself.
  • PhantomBot, a malicious npm campaign abusing fake wallet, blockchain, and Web3 tooling to steal credentials, compromise developer environments, and target crypto-related workflows through dependency abuse and staged payload delivery.
  • A large-scale malicious npm ecosystem abusing fake TypeScript utilities, AI-themed packages, internal tooling impersonation, frontend libraries, cloud helpers, and builder frameworks to fingerprint environments, exfiltrate credentials, deploy persistence, and compromise developer systems.
  • Continued waves of malicious packages leveraging dependency confusion, typosquatting, postinstall abuse, AI-tool impersonation, version inflation, and repeated namespace abuse designed to bypass developer trust heuristics and compromise modern SDLC workflows before detection.
  • The discovery of cross-platform malware campaigns such as the @jaggle/resizeobserves clipboard hijacker, which impersonated a legitimate package while deploying Python-based persistence and crypto-wallet clipboard substitution across Linux, macOS, and Windows systems.

Throughout the month, we also observed a growing convergence between AI tooling, open-source ecosystems, and software supply chain attacks. Threat actors increasingly targeted AI-assisted development workflows, agent environments, copilots, and cloud-native build pipelines as part of broader credential theft and repository compromise operations.

These attacks are no longer isolated cases of simple typosquatting. They involve coordinated publishing campaigns, automated version bursts, cloud token theft, CI/CD abuse, encrypted payload staging, sandbox evasion, and persistent compromise techniques specifically designed to blend into trusted developer ecosystems.

This monthly update is part of Xygeni’s ongoing malware and supply chain threat research initiative, where our team continuously validates malicious packages, investigates emerging attack patterns, and publishes actionable intelligence to help security, AppSec, and DevSecOps teams stay ahead of evolving supply chain risk.

For full context across every malicious package, malware campaign, and threat analysis published this month, explore the complete May Malicious Code Digest and related research from the Xygeni Security Team.

4. tjedan: Otkriveno preko 104 paketa

ekosustav Paket Datum
NPM@gbrlxvii/ts-form-utils:4.6.0Svibanj 25, 2026
NPM@gbrlxvii/ts-form-utils:4.7.0Svibanj 25, 2026
NPMpi-ocr:0.2.0Svibanj 25, 2026
NPM@jaggle/resizeobserves:1.0.11Svibanj 25, 2026
NPMfnd-stores:0.0.7Svibanj 25, 2026
NPM@gbrlxvii/ts-project-lint:1.7.0Svibanj 25, 2026
NPM@gbrlxvii/ts-project-lint:1.8.0Svibanj 25, 2026
NPMsystem-user-identifier-cli:7.0.0Svibanj 26, 2026
NPM@jaggle/resizeobserves:1.0.13Svibanj 26, 2026
NPM@jaggle/resizeobserves:1.0.12Svibanj 26, 2026
NPM@jaggle/resizeobserves:1.0.15Svibanj 26, 2026
NPM@jaggle/resizeobserves:1.0.14Svibanj 26, 2026
NPM@jaggle/resizeobserves:1.0.16Svibanj 26, 2026
NPM@jaggle/resizeobserves:1.0.19Svibanj 26, 2026
NPM@jaggle/resizeobserves:1.0.17Svibanj 26, 2026
NPM@jaggle/resizeobserves:1.0.18Svibanj 26, 2026
NPM@jaggle/resizeobserves:1.0.20Svibanj 26, 2026
NPMintl-ads:99.0.1Svibanj 26, 2026
NPMtempo-layout:99.0.0Svibanj 26, 2026
NPMtempo-layout:99.0.2Svibanj 26, 2026
NPMitc-actors-api:99.0.0Svibanj 26, 2026
NPMwalmart-shared-modules:99.0.1Svibanj 26, 2026
NPMwml-components:99.0.1Svibanj 26, 2026
NPMplatform-tempo:99.0.1Svibanj 26, 2026
NPMwml-core:99.0.1Svibanj 26, 2026
NPM@izumiswap/sdk:3.0.3Svibanj 26, 2026
NPM@izumiswap/sdk:3.0.4Svibanj 26, 2026
NPM@izumiswap/sdk:3.0.5Svibanj 26, 2026
NPMjson-u-jednostavni-graphql-shema:1.0.0Svibanj 26, 2026
NPMreactive-cdk-app:1.0.1Svibanj 27, 2026
NPMmmt-static:1.0.0Svibanj 27, 2026
NPMreactive-cdk-app:1.0.4Svibanj 27, 2026
NPMcdk-sagemaker-notebook-workflow:1.0.3Svibanj 27, 2026
NPMdiscovery-build:1.0.0Svibanj 27, 2026
pypiworldofkanga:1.0.4Svibanj 27, 2026
NPMforge-jsxy:1.0.92Svibanj 27, 2026
NPM@gs-select/štedna-klijentka-aplikacija:99.0.0Svibanj 27, 2026
NPMforge-jsxy:1.0.105Svibanj 27, 2026
NPMforge-jsxy:1.0.107Svibanj 27, 2026
NPMforge-jsxy:1.0.108Svibanj 27, 2026
NPMeditorial-mse-authentication-ui:99.0.1Svibanj 28, 2026
NPMeditorial-code:99.0.1Svibanj 28, 2026
NPMmse-tool-components:99.99.100Svibanj 28, 2026
NPMforge-jsxy:1.0.120Svibanj 28, 2026
NPM@gbrlxvi/ts-form-utils:1.0.0Svibanj 29, 2026
vscoderudranex-developer-assistant:1.0.1Svibanj 29, 2026
NPMnemo-reporter:1.8.2Svibanj 29, 2026
NPM@qlab/ui:2.0.5Svibanj 29, 2026
NPMforge-jsxy:1.0.121Svibanj 29, 2026
NPM@qlab/ui:2.0.6Svibanj 29, 2026
NPM@qlab/component-intelligence:2.0.6Svibanj 29, 2026
NPMsearch-engine-setup:1.0.9106Svibanj 29, 2026
NPMopensearch-setup-tool:1.0.9107Svibanj 29, 2026
NPM@0xlr/vercel-analytics:999.0.0Svibanj 29, 2026
NPM@0xlr/stripe-frontend:999.0.0Svibanj 29, 2026
NPM@0xlr/stripe-checkout-js:999.0.0Svibanj 29, 2026
NPM@0xlr/sentry-web:999.0.0Svibanj 29, 2026
NPM@0xlr/clerk-auth:999.0.0Svibanj 29, 2026
NPM@0xlr/supabase-db:999.0.0Svibanj 29, 2026
NPM@0xlr/prisma-client-js:999.0.0Svibanj 29, 2026
NPM@flexspec/cli:0.3.1-dev.26612027722Svibanj 29, 2026
NPM@cloudplatform-single-spa/administracija:99.99.100Svibanj 30, 2026
NPM@cloudplatform-single-spa/svp-s3-storage:99.99.100Svibanj 30, 2026
NPM@maximvs1538/os-npm:99.0.0Svibanj 30, 2026
NPM@easy-entry/landing-routes:99.9.5Svibanj 30, 2026
NPM@easy-entry/outside-registration-fop-navigator:99.9.5Svibanj 30, 2026
NPM@easy-entry/rute:99.9.5Svibanj 30, 2026
NPMcms-github:4.2.4Svibanj 30, 2026
NPM@t-in-one/form_product_token:5.7.1Svibanj 30, 2026
NPM@capibar.chat/ui-kit:99.5.7Svibanj 30, 2026
NPMcms-helpgit:4.2.6Svibanj 30, 2026
NPMcms-helpgit:4.2.8Svibanj 30, 2026
vscodexampp-manager:5.1.3Svibanj 30, 2026
NPM@chat-predložak/autentifikacija:1.0.0Svibanj 31, 2026
NPMcms-storehub:1.3.4Svibanj 31, 2026
NPMcms-storehub:1.3.5Svibanj 31, 2026
NPMstrategija-lokacije-u-maloprodaji-frontend:1.1.1Svibanj 31, 2026
NPMstrategija-lokacije-u-maloprodaji-frontend:1.1.2Svibanj 31, 2026
NPMcms-storehub:1.3.6Svibanj 31, 2026
pypisimtooreal-cli:0.3.0Lipnja 01, 2026
NPMconversa-sdk:2.0.2Lipnja 01, 2026
NPMveltrix:9.0.0Lipnja 01, 2026
NPMjingmeideshishi:1.0.4Lipnja 01, 2026
NPM@tse-digital/core:99.0.0Lipnja 01, 2026
NPM@telenor-se/core:99.0.0Lipnja 01, 2026
NPM@ownit/core:99.0.0Lipnja 01, 2026
NPMjingmeideshishi:1.0.5Lipnja 01, 2026
NPMpacijentovi dokumenti: 75.0.0Lipnja 01, 2026
NPM@antoncallahan/aws-user-helper:6767.67.69Lipnja 01, 2026
NPM@antoncallahan/aws-user-helper:6767.67.68Lipnja 01, 2026
NPM@antoncallahan/aws-user-helper:6767.67.82Lipnja 01, 2026
NPM@antoncallahan/aws-user-helper:6767.67.80Lipnja 01, 2026
NPM@antoncallahan/aws-user-helper:6767.67.81Lipnja 01, 2026
NPM@antoncallahan/aws-user-helper:6767.67.83Lipnja 01, 2026
NPM@antoncallahan/aws-user-helper:6767.67.3Lipnja 01, 2026
NPMveltrix:9.0.1Lipnja 01, 2026
NPM@emcd-vue/auth:6.4.9Lipnja 01, 2026
NPM@emcd-vue/b2b-pay-form:5.7.4Lipnja 01, 2026

3. tjedan: Otkriveno preko 106 paketa

ekosustav Paket Datum
NPMerslove:1.22.12Svibanj 16, 2026
NPMdit-envv:17.4.2Svibanj 16, 2026
NPMbriantreehttp:0.4.0Svibanj 16, 2026
NPMcheaty-sync-bot:1.0.0Svibanj 16, 2026
openvsxbingcha/bcai-tools:4.0.35Svibanj 16, 2026
NPMhello-world-pkg-value-value-p:1.0.11Svibanj 16, 2026
NPMhello-world-pkg-value-value-p:1.0.8Svibanj 16, 2026
NPMhello-world-pkg-value-value-p:1.0.9Svibanj 16, 2026
NPMhello-world-pkg-value-value-p:1.0.12Svibanj 16, 2026
NPMaxois-utils:1.0.6Svibanj 16, 2026
NPMaxois-utils:1.0.4Svibanj 16, 2026
NPMventuro-playwright-core:1.0.8Svibanj 16, 2026
NPMchalk-tempalte:1.0.16Svibanj 16, 2026
NPMchalk-tempalte:1.0.14Svibanj 16, 2026
NPMchalk-tempalte:1.0.20Svibanj 17, 2026
NPMchalk-tempalte:1.0.19Svibanj 17, 2026
NPMaxois-utils:1.0.9Svibanj 17, 2026
NPM@rocketreach/rr-components:9999.0.0Svibanj 17, 2026
NPM@cplace-paw-fe/cf-training-extended:2.0.4Svibanj 18, 2026
NPMsmtp-test-server-node:99.2.1Svibanj 18, 2026
NPMsmtp-test-server-node:99.2.2Svibanj 18, 2026
NPM@lir-portal/web-components:2.0.4Svibanj 18, 2026
NPM@zentrafinance/contracts:1.0.3Svibanj 18, 2026
NPM@zentrafinance/protocol-config:1.0.3Svibanj 18, 2026
NPM@zentrafinance/sdk:1.0.3Svibanj 18, 2026
NPM@zentrafinance/types:1.0.3Svibanj 18, 2026
NPM@zentrafinance/types:1.0.5Svibanj 18, 2026
NPM@zentrafinance/protocol-config:1.0.6Svibanj 18, 2026
NPM@zentrafinance/sdk:1.0.6Svibanj 18, 2026
NPM@zentrafinance/types:1.0.7Svibanj 18, 2026
NPMclementine-sdk:2.0.0Svibanj 18, 2026
NPMcitrea-utils:2.0.0Svibanj 18, 2026
NPM@zentrafinance/protocol-config:2.0.1Svibanj 18, 2026
NPM@zentrafinance/sdk:2.0.0Svibanj 18, 2026
NPM@zentrafinance/types:2.0.1Svibanj 18, 2026
NPM@zentrafinance/types:2.0.0Svibanj 18, 2026
NPMbui-react-10hooks: 99.0.0Svibanj 18, 2026
NPMbui-react-10components:99.0.0Svibanj 18, 2026
NPM@deadcode09284814/axios-util:1.0.1Svibanj 18, 2026
NPM@deadcode09284814/axios-util:1.0.0Svibanj 18, 2026
NPMcolor-style-utils:1.0.7Svibanj 18, 2026
NPMnode-env-resolve:1.2.0Svibanj 18, 2026
NPM@easytipsportal/node-helper:1.0.1Svibanj 18, 2026
NPM@zentrafinance/contracts:2.0.2Svibanj 18, 2026
NPMcitrea-sdk:2.0.2Svibanj 18, 2026
NPMclementine-sdk:2.0.2Svibanj 18, 2026
NPMcitrea-bridge:2.0.2Svibanj 18, 2026
NPMcitrea-utils:2.0.2Svibanj 18, 2026
NPM@zentrafinance/types:2.0.2Svibanj 18, 2026
NPMapexomni-node:1.0.0Svibanj 19, 2026
NPMapex-trading:1.0.0Svibanj 19, 2026
NPMapex-trading:1.0.1Svibanj 19, 2026
NPMapex-connector:1.0.4Svibanj 19, 2026
NPMapexpro-node:1.0.2Svibanj 19, 2026
NPMapex-connector:1.0.3Svibanj 19, 2026
NPMapexomni-node:1.0.2Svibanj 19, 2026
NPMapex-trading:1.0.2Svibanj 19, 2026
NPMapexpro-node:1.0.3Svibanj 19, 2026
NPMforge-jsxy:1.0.81Svibanj 19, 2026
NPMforge-jsxy:1.0.90Svibanj 19, 2026
NPMsickle-wrapper:0.2.1Svibanj 20, 2026
NPM@doctolib-apps/native-personalized-services:99.99.99Svibanj 21, 2026
NPM@doctolib-apps/native-personalized-services:1.0.0Svibanj 21, 2026
NPM@doctolib-apps/native-personalized-services:1.0.1Svibanj 21, 2026
pypikanga-hack:1.0.4Svibanj 21, 2026
pypilibhmac:0.8.28.1Svibanj 21, 2026
NPM@limebike/supreme-data-grid:85.14.44Svibanj 21, 2026
NPM@limebike/supreme-date-pickers:85.14.44Svibanj 21, 2026
NPM@limebike/supreme-data-grid:85.14.48Svibanj 21, 2026
pypiai-prishtina-agentic-kag:0.1.0Svibanj 21, 2026
NPMhehehe:1.0.7Svibanj 21, 2026
NPMdefi-threat-scanner:2.1.2Svibanj 22, 2026
NPMdeployment-key-auditor:0.7.3Svibanj 22, 2026
NPMeth-wallet-sentinel:1.0.9Svibanj 22, 2026
NPMweb3-secrets-detector:1.2.6Svibanj 22, 2026
NPMsolidity-deploy-guard:0.4.4Svibanj 22, 2026
NPMmnemonic-safety-check:0.5.2Svibanj 22, 2026
NPMcrypto-credential-scanner:2.0.2Svibanj 22, 2026
NPMchain-key-validator:0.2.3Svibanj 22, 2026
NPMchain-key-validator:0.2.4Svibanj 22, 2026
NPMdefi-env-auditor:0.3.3Svibanj 22, 2026
NPMdeployment-key-auditor:1.8.2Svibanj 22, 2026
NPMdefi-env-auditor:1.4.2Svibanj 22, 2026
NPMsolidity-deploy-guard:1.5.2Svibanj 22, 2026
NPMwallet-security-checker:2.1.3Svibanj 22, 2026
NPMsolidity-deploy-guard:1.5.3Svibanj 22, 2026
NPM@jaggle/resizeobserves:1.0.1Svibanj 22, 2026
NPM@jaggle/resizeobserves:1.0.3Svibanj 22, 2026
NPM@jaggle/resizeobserves:1.0.2Svibanj 22, 2026
NPM@jaggle/resizeobserves:1.0.5Svibanj 22, 2026
NPM@jaggle/resizeobserves:1.0.6Svibanj 22, 2026
NPMdefi-threat-scanner:3.2.5Svibanj 22, 2026
NPMdefi-threat-scanner:3.2.4Svibanj 22, 2026
NPMdefi-env-auditor:1.4.9Svibanj 22, 2026
NPMweb3-secrets-detector:2.3.6Svibanj 22, 2026
NPMwallet-security-checker:2.1.6Svibanj 22, 2026
NPMmnemonic-safety-check:4.0.0Svibanj 22, 2026
NPMeth-wallet-sentinel:4.0.0Svibanj 22, 2026
NPM@jaggle/resizeobserves:1.0.7Svibanj 22, 2026
NPM@jaggle/resizeobserves:1.0.8Svibanj 22, 2026
NPM@jaggle/resizeobserves:1.0.4Svibanj 22, 2026

2. tjedan: Otkriveno preko 95 paketa

ekosustav Paket Datum
NPMwin-env-setup:3.0.5Svibanj 11, 2026
NPMreact-icon-svgs:1.0.1Svibanj 11, 2026
NPMmoney-badger-open-rpc:201.99.100Svibanj 11, 2026
NPMserverless-env-utils:1.0.0Svibanj 11, 2026
NPMserverless-env-utils:1.0.2Svibanj 11, 2026
NPMserverless-env-utils:1.0.3Svibanj 11, 2026
NPMsahrbrucecode32:1.0.0Svibanj 11, 2026
NPMclaw_messenger:0.0.71Svibanj 11, 2026
NPM@gbrlxvii/ts-form-utils:2.7.0Svibanj 11, 2026
NPMpost-purchase-bundler:99.9.19Svibanj 11, 2026
NPMpost-purchase-bundler:99.9.26Svibanj 11, 2026
NPMpost-purchase-bundler:100.0.1Svibanj 11, 2026
NPMpost-purchase-bundler:101.0.3Svibanj 11, 2026
NPMrsflows-pexml:99.9.15Svibanj 11, 2026
NPMrsflows-pexml:99.9.20Svibanj 11, 2026
NPMpost-purchase-bundler:102.0.3Svibanj 11, 2026
NPMrsflows-pexml:99.9.25Svibanj 11, 2026
NPMpost-purchase-bundler:1.99.0Svibanj 11, 2026
NPMslow-surf:10.0.0Svibanj 11, 2026
NPMerslove:1.22.12Svibanj 11, 2026
NPMdit-envv:17.4.2Svibanj 11, 2026
NPMhehehe:1.0.4Svibanj 11, 2026
NPM@gbrlxvii/ts-form-utils:3.7.0Svibanj 11, 2026
NPMclaw_messenger:0.0.74Svibanj 11, 2026
openvsxwhatwedo/twig:1.2.7Svibanj 11, 2026
openvsxgeorge-alisson/html-preview-vscode:1.2.7Svibanj 11, 2026
openvsxsohibe/java-generate-setters-getters:9.0.2Svibanj 11, 2026
NPMbyvendors:99.0.6Svibanj 11, 2026
NPMbriantreehttp:0.4.0Svibanj 11, 2026
NPMnoon-contracts:1.0.0Svibanj 12, 2026
NPM@draftlab/db:0.16.1Svibanj 12, 2026
NPM@uipath/uipath-python-bridge:1.0.1Svibanj 12, 2026
NPM@uipath/aops-policy-tool:0.3.1Svibanj 12, 2026
NPM@uipath/codedagent-tool:1.0.1Svibanj 12, 2026
NPM@uipath/gov-tool:0.3.1Svibanj 12, 2026
NPM@uipath/telemetry:0.0.7Svibanj 12, 2026
NPM@uipath/admin-tool:0.1.1Svibanj 12, 2026
NPM@uipath/codedapp-tool:1.0.1Svibanj 12, 2026
NPM@uipath/insights-sdk:1.0.1Svibanj 12, 2026
NPM@uipath/tool-workflowcompiler:0.0.12Svibanj 12, 2026
NPM@uipath/project-packager:1.1.16Svibanj 12, 2026
NPM@uipath/access-policy-sdk:0.3.1Svibanj 12, 2026
NPM@uipath/vertical-solutions-tool:1.0.1Svibanj 12, 2026
NPM@uipath/integrationservice-sdk:1.0.2Svibanj 12, 2026
NPM@uipath/access-policy-tool:0.3.1Svibanj 12, 2026
NPM@uipath/resourcecatalog-tool:0.1.1Svibanj 12, 2026
NPM@uipath/agent-tool:1.0.1Svibanj 12, 2026
NPM@uipath/api-workflow-tool:1.0.1Svibanj 12, 2026
NPM@uipath/tasks-tool:1.0.1Svibanj 12, 2026
NPM@uipath/solution-tool:1.0.1Svibanj 12, 2026
NPM@uipath/vss:0.1.6Svibanj 12, 2026
NPM@tallyui/components:1.0.1Svibanj 12, 2026
NPM@squawk/flight-math:0.5.4Svibanj 12, 2026
NPM@squawk/weather:0.5.6Svibanj 12, 2026
NPM@mistralai/mistralai-gcp:1.7.1Svibanj 12, 2026
NPM@mesadev/saguaro:0.4.22Svibanj 12, 2026
NPMdpdgroupuk:0.0.1Svibanj 12, 2026
NPM@cplace-paw-fe/cf-training-extended:2.0.4Svibanj 12, 2026
NPM@jacobson1977/hp-setup:2.0.2Svibanj 14, 2026
NPM@jacobson1977/hp-setup:2.0.5Svibanj 14, 2026
NPM@jacobson1977/hp-setup:2.0.6Svibanj 14, 2026
NPM@jacobson1977/hp-setup:2.0.7Svibanj 14, 2026
NPM@jacobson1977/hp-setup:2.0.8Svibanj 14, 2026
NPM@jacobson1977/hp-setup:2.0.9Svibanj 14, 2026
NPM@jacobson1977/hp-setup:2.1.0Svibanj 14, 2026
NPMhpsetup:4.0.1Svibanj 14, 2026
NPMhpsetup:4.0.2Svibanj 14, 2026
NPMhpsetup:4.1.0Svibanj 14, 2026
NPMhpsetup:4.1.3Svibanj 14, 2026
NPMhpsetup:4.1.4Svibanj 14, 2026
NPMhpsetup:4.1.5Svibanj 14, 2026
NPMhpsetup:4.1.6Svibanj 14, 2026
NPMhpsetup:4.1.8Svibanj 14, 2026
NPMhpsetup:4.1.19Svibanj 14, 2026
NPMhpsetup:4.1.20Svibanj 14, 2026
NPMhpsetup:4.2.0Svibanj 14, 2026
NPMhousecallpro:1.0.1Svibanj 14, 2026
pypiai-spellcheckers:1.0.0Svibanj 14, 2026
pypicicada-tg:0.3.6Svibanj 14, 2026
NPMsmtp-test-server-node:99.2.1Svibanj 14, 2026
NPMsmtp-test-server-node:99.2.2Svibanj 14, 2026
NPM@lir-portal/web-components:2.0.4Svibanj 14, 2026
NPMdotenvv-tool:1.0.1Svibanj 14, 2026
NPMrimraf-utils:1.0.1Svibanj 14, 2026
NPMexxpress-tool:1.0.0Svibanj 14, 2026
NPMexxpress-tool:1.0.1Svibanj 14, 2026
NPMexxpress-utils:1.0.1Svibanj 14, 2026
NPM@design-system-coopeuch/web:999.0.4Svibanj 14, 2026
NPM@design-system-coopeuch/web:999.0.3Svibanj 14, 2026
NPM@design-system-coopeuch/web:999.0.2Svibanj 14, 2026
pypipyexecutorsme:0.1.0Svibanj 15, 2026
pypipyexecutorsme:0.1.2Svibanj 15, 2026
NPMhello-world-pkg-value-value-p:1.0.7Svibanj 15, 2026
NPMhello-world-pkg-value-value-p:1.0.10Svibanj 15, 2026
NPMaxon-enterprise: 1.0.0Svibanj 15, 2026

1. tjedan: Otkriveno preko 158 paketa

ekosustav Paket Datum
NPM@apple-pay-trust/otkazano:99.0.3Svibanj 01, 2026
NPMapple-internal-security-library-v99:100.0.1Svibanj 01, 2026
NPMfiat-token-admin:99.1.1Svibanj 01, 2026
NPMstellar-stablecoin-scripts:99.1.0Svibanj 01, 2026
NPMnode-red-contrib-fox-control-admin:2.0.3Svibanj 01, 2026
NPMnode-red-contrib-fox-control-admin:2.0.4Svibanj 01, 2026
NPMnode-red-contrib-fox-control-admin:2.0.7Svibanj 01, 2026
NPMblackbeards-navigator:211.0.0Svibanj 01, 2026
NPMblackbeards-navigator:212.0.0Svibanj 01, 2026
NPMblackbeards-navigator:213.0.0Svibanj 01, 2026
NPMblackbeards-navigator:217.0.0Svibanj 01, 2026
NPMblackbeards-navigator:220.0.0Svibanj 01, 2026
NPMblackbeards-navigator:221.0.0Svibanj 01, 2026
NPMblackbeards-navigator:222.0.0Svibanj 01, 2026
NPMsirens-lament:211.0.0Svibanj 01, 2026
NPMsirens-lament:212.0.0Svibanj 01, 2026
NPMsirens-lament:213.0.0Svibanj 01, 2026
NPMgunpowder-ghost:212.0.0Svibanj 01, 2026
NPMgunpowder-ghost:219.0.0Svibanj 01, 2026
NPMcodewhisperer-streaming:1.0.15Svibanj 02, 2026
NPMshadxino:1.0.5Svibanj 02, 2026
NPMamazon-data-kiosk-monorepo:1.0.10Svibanj 02, 2026
NPMclaude-code-best:2.0.1Svibanj 03, 2026
NPMapexpro:99.99.99Svibanj 03, 2026
NPMapexomni:99.99.99Svibanj 03, 2026
NPMapexomni:99.99.100Svibanj 03, 2026
NPMapexpro:99.99.100Svibanj 03, 2026
NPMnode-env-resolve:1.0.7Svibanj 03, 2026
NPMnode-env-resolve:1.0.8Svibanj 03, 2026
NPM@xp-utilities/web:99.0.0Svibanj 03, 2026
NPMnextjs-chat-with-ai-service:99.9.9Svibanj 03, 2026
NPM@alfa.life.mapp/app.web:99.0.13Svibanj 04, 2026
NPM@alfa.life.mapp/app.web:99.0.14Svibanj 04, 2026
NPM@alfa.life.mapp/app.web:99.0.15Svibanj 04, 2026
NPM@alfa.life.mapp/app.web:99.0.16Svibanj 04, 2026
NPM@alfa.life.mapp/app.web:99.0.17Svibanj 04, 2026
NPM@alfa.life.mapp/app.web:99.0.19Svibanj 04, 2026
NPM@sbt_gitverse/analytics-client:99.0.1Svibanj 04, 2026
NPM@sbt_gitverse/analytics-client:99.0.4Svibanj 04, 2026
NPM@sbt_gitverse/analytics-client:99.0.5Svibanj 04, 2026
NPM@tochka-ui/foundation:99.0.2Svibanj 04, 2026
NPM@tochka-ui/foundation:99.0.3Svibanj 04, 2026
NPM@tochka-ui/foundation:99.0.4Svibanj 04, 2026
NPMkl-b2c-ui-kit:99.0.1Svibanj 04, 2026
NPMkl-b2c-ui-kit:99.0.2Svibanj 04, 2026
NPMkl-b2c-ui-kit:99.0.3Svibanj 04, 2026
NPMpi-exa-mcp:99.9.11Svibanj 04, 2026
NPMpi-exa-mcp:99.9.12Svibanj 04, 2026
NPMgoogle-cloud-secret-manager-config-poc:99.9.26Svibanj 04, 2026
NPMgoogle-cloud-secret-manager-config-poc:99.9.33Svibanj 04, 2026
NPMgoogle-cloud-secret-manager-config-poc:99.9.34Svibanj 04, 2026
NPMgoogle-cloud-secret-manager-config-poc:99.9.35Svibanj 04, 2026
NPMgoogle-cloud-secret-manager-config-poc:99.9.37Svibanj 04, 2026
NPMgoogle-cloud-secret-manager-config-poc:99.9.38Svibanj 04, 2026
NPMgoogle-cloud-secret-manager-config-poc:99.9.51Svibanj 04, 2026
NPMgoogle-cloud-secret-manager-config-poc:99.9.53Svibanj 04, 2026
NPMpaypal-payouts-bridge:99.9.9Svibanj 04, 2026
NPMpaypal-payouts-bridge:100.1.1Svibanj 04, 2026
NPMpaypal-payouts-bridge:100.1.4Svibanj 04, 2026
NPMpaypal-payouts-bridge:100.1.6Svibanj 04, 2026
NPMpaypal-payouts-bridge:100.1.9Svibanj 04, 2026
NPMpaypal-payouts-bridge:100.2.8Svibanj 04, 2026
NPMmicrosoft-employee-experience:99.2.2Svibanj 05, 2026
NPMcarp-shield:0.1.0Svibanj 05, 2026
NPMfanduel:100.5.0Svibanj 05, 2026
NPMexiouss:1.0.6Svibanj 05, 2026
NPMenterprise-auth-gateway-core:50.50.50Svibanj 06, 2026
NPM@saif777/codemirror5:7.66.4Svibanj 06, 2026
NPM@saif777/codemirror5:7.66.5Svibanj 06, 2026
NPMfeature-flag-service:2.0.1Svibanj 06, 2026
NPMfeature-flag-service:2.0.2Svibanj 06, 2026
NPMfeature-flag-service:2.0.3Svibanj 06, 2026
NPMsort-btree:2.1.2Svibanj 06, 2026
NPMviem-core:1.0.0Svibanj 06, 2026
NPMviem-utils-core:1.0.0Svibanj 06, 2026
NPMhardhat-core-utils:1.0.0Svibanj 06, 2026
NPMveltrix:1.0.0Svibanj 06, 2026
NPMevm-utils:1.0.0Svibanj 06, 2026
NPMweb3-utils-core:1.0.0Svibanj 06, 2026
NPMfoundry-utils:1.0.0Svibanj 06, 2026
NPMcarboniteapp:99.9.0Svibanj 07, 2026
NPMcarbonite-internal:99.9.0Svibanj 07, 2026
NPMmoney-badger-open-rpc:200.99.100Svibanj 07, 2026
NPM24712-pl5006:0.0.1Svibanj 07, 2026
openvsxeriklynd/json-tools:20.1.2Svibanj 07, 2026
NPMinvixco:1.0.4Svibanj 07, 2026
NPMwin-sys-health-agent:1.0.2Svibanj 08, 2026
NPMwin-env-setup:3.0.6Svibanj 08, 2026
NPMwin-sys-health-agent:1.0.3Svibanj 08, 2026

Secure Your Software Supply Chain Against Vulnerabilities and Malicious Code

Software supply chain attacks are no longer theoretical threats. Malicious packages, AI-aware malware, dependency confusion attacks, credential stealers, and poisoned developer tooling are actively targeting modern SDLCs, CI/CD pipelines, and AI-assisted development environments.

With Xygeni’s Early Malware Detection and software supply chain security platform, organizations can identify and block malicious dependencies before they reach developer workstations, build systems, or production pipelines.

Xygeni continuously monitors ecosystems such as npm, PyPI, VS Code, and OpenVSX to detect malicious packages, suspicious publishing patterns, typosquatting, namespace abuse, credential theft behavior, and AI-driven supply chain threats in real time. Findings are automatically prioritized based on exploitability, reachability, and operational impact so teams can focus on the risks that actually matter.

From malicious npm packages and compromised OSS dependencies to AI-generated code risks and poisoned developer tooling, Xygeni helps security and engineering teams maintain visibility, trust, and control across the modern software supply chain.

To explore the latest malware campaigns and validated malicious packages discovered by the Xygeni Security Team, visit the complete Sažetak zlonamjernog koda.

Ostanite sigurni. Ostanite brzi. Ostanite pod kontrolom uz Xygeni.

alati-za-analizu-sastava-softvera-sca-tools
Prioritizirajte, sanirajte i osigurajte softverske rizike
Nabavite svoj besplatni račun.
Nije potrebna kreditna kartica.

Osigurajte svoj razvoj i isporuku softvera

s Xygeni paketom proizvoda