Local Python IOC scanner for Mini Shai-Hulud npm supply-chain compromise indicators in node_modules, package.json, npm cache, .npmrc, processes, and git history.
Scripts and Actions for Git and GitHub, including security hardening
Forensic dataset + live dashboard for the 2026-04-29 'A Mini Shai-Hulud has Appeared' npm supply-chain worm by TeamPCP. 1,117 dropbox repos, 22 compromised accounts, 47 IOCs across 14 kinds. Trojaned: @cap-js, mbt, @bitwarden/cli. C2 attribution to AS209101 IP Vendetta Inc. JSONL data · kinetic dashboard · CC-BY-4.0.
Supply chain attack scanner for the Mini Shai-Hulud npm worm (May 2026) - checks 169 compromised packages
Add a description, image, and links to the mini-shai-hulud topic page so that developers can more easily learn about it.
To associate your repository with the mini-shai-hulud topic, visit your repo's landing page and select "manage topics."