08:43
2026-06-17
aikido.dev
ai-safety
Over 140 popular Mastra npm Packages Hit by Supply Chain Attack
A supply chain attack compromised over 140 npm packages in the @mastra scope, including @mastra/core with 918K weekly downloads, by injecting a malicious dependency that executes a postinstall script โฆ