An attack targeting the Node.js ecosystem was just identified — but not before it compromised 18 npm packages that account ...

The "biggest supply chain attack" in the history of npm took place recently, affecting almost two dozen packages.