
The rapid proliferation of artificial intelligence tools has created a gold rush for developers, but this surge in activity has also attracted sophisticated threat actors looking to exploit the trust inherent in the open-source ecosystem. Recently, security researchers identified a deceptive package within the Node Package Manager registry that was specifically designed to compromise users of the Claude AI platform










