Malware dev tries to steal Claude users' secrets, writes npm slop, leaks own GitHub private token
A malware developer attempting to steal secrets from users of Anthropic's Claude AI model inadvertently exposed their own GitHub private token while publishing malicious npm packages. The developer's …