THREATOPS
THREAT OPSThreat News › M-Red-Team: AsyncAPI Supply Chain Compromise via GitHub Actions

M-Red-Team: AsyncAPI Supply Chain Compromise via GitHub Actions

lowwiz_researchPublished 2026-07-14

Detect and mitigate malicious @asyncapi npm packages linked to the latest npm supply chain attack.

MITRE ATT&CK techniques

Original source: https://www.wiz.io/blog/m-red-team-asyncapi-supply-chain-compromise-via-github-actions