Malicious Bun Script Found in NPM Package Bumps
*`package.json` includes a `preinstall` script running `node setup_bun.js`, along with `setup_bun.js` and `bun_environment.js` files that appear to contain the malware.*
*`package.json` includes a `preinstall` script running `node setup_bun.js`, along with `setup_bun.js` and `bun_environment.js` files that appear to contain the malware.*
For more info - https://www.wiz.io/blog/shai-hulud-2-0-ongoing-supply-chain-...