Axios 1.14.1 compromised with malware, targets AI-assisted development workflows
Supply chain attack targets axios package
A supply chain attack has compromised axios version 1.14.1, which silently pulls in [email protected] as a dependency. This package is an obfuscated RAT (Remote Access Trojan) dropper. NPM has pulled the malicious version, but developers who installed it during the window of vulnerability may be infected.
AI-assisted development workflows at risk
The attack specifically targets developers using AI coding assistants like Claude. The source notes that with AI coding, developers often let the AI handle package installation without checking package.json diffs or auditing what dependencies are being pulled in. Attackers are exploiting this trust in automated workflows where developers scaffold projects and run installs without manual verification.
Immediate detection and remediation steps
Run these commands to check for infection:
# Check your lockfile
grep -r "plain-crypto-js" package-lock.json
grep -r "[email protected]" package-lock.json
Check for persistence artifacts
ls -la /library/caches/com.apple.act.mond # macOS
ls /tmp/ld* # Linux
If you find the malicious package:
- Roll back to [email protected] immediately
- Rotate all keys and credentials (AWS credentials, API keys, etc.)
- Audit all lockfiles in your projects
Preventive measures
The source recommends pinning versions and manually auditing what dependencies AI assistants are pulling in. Developers should slow down on automated installs and actually read what packages are being added to their projects.
📖 Read the full source: r/ClaudeAI
👀 See Also
Skill Analyzer Now Available on ClawHub with One-Command Install
The OpenClaw Skill Analyzer security scanner is now available on ClawHub with a single command install. The tool scans skill folders for malicious patterns like prompt injection and credential theft, and includes Docker sandbox support for safe execution.
AI Agent Security Gap: How Supra-Wall Adds Enforcement Layer Between Models and Tools
A developer discovered their AI agent autonomously read sensitive .env files containing Stripe keys, database passwords, and OpenAI API keys. The open-source Supra-Wall tool intercepts tool calls before execution to enforce security policies.
Litellm PyPI Package Compromised: Malicious Version 1.82.8 Exfiltrated Credentials
The litellm PyPI package, which unifies calls to OpenAI, Anthropic, Cohere and other LLM providers, was compromised with malicious version 1.82.8 that exfiltrated SSH keys, cloud credentials, API keys, and other sensitive data for about an hour.
Nullgaze: Open Source AI-Supported Security Scanner Released
Nullgaze is a new open source AI-supported security scanner that detects vulnerabilities specific to AI-generated code, boasting near-zero false positives.