Microsoft

Typosquatted npm packages used to steal cloud and CI/CD secrets

Microsoft has identified an active supply chain attack targeting the npm package ecosystem. On May 28, 2026, a single threat actor operating under the newly created maintainer alias vpmdhaj (a39155771 ...
GitHub

Rhino is an implementation of JavaScript in Java.

Rhino 1.7.15 and before were primarily used in a single JAR called "rhino.jar". Newer releases now organize the code using Java modules. There are four primary modules and one auxiliary module for ...
GitHub

dagre - Graph layout for JavaScript

Dagre is a JavaScript library that makes it easy to lay out directed graphs on the client-side. For more details, including examples and configuration options, please ...