{ads}

144 Mastra npm Packages Compromised via Hijacked Contributor Account

Written By Wednesday, 17 June 2026 Add Comment



June 17, 2026 at 01:08PM

As many as 144 npm packages associated with the Mastra namespace ("@mastra/*"), a popular open-source JavaScript and TypeScript framework for building artificial intelligence (AI) applications, have been compromised as part of a software supply chain attack codenamed easy-day-js, per findings from JFrog, SafeDep, Socket, and StepSecurity. "A single npm account (ehindero) mass-published more

from The Hacker News https://ift.tt/3DSsjlv

0 Response to "144 Mastra npm Packages Compromised via Hijacked Contributor Account"

Post a Comment

Subscribe to: Post Comments (Atom)

Article Top Ads

Central Ads Article 1

Middle Ads Article 2

Article Bottom Ads