Supply Chain Vulnerabilities

How binding.gyp can be exploited

gyp stands for Generate Your Projects, a build process similar

SANDWORM_MODE: npm Worm Poisoning AI Toolchains

Socket’s Threat Research Team dropped an incredibly detailed report