Apr 302026 SAP-Related npm Packages Compromised in Credential-Stealing Supply Chain Attack SAP npm packages poisoned on April 29, 2026 + AES-256-GCM encrypted credential theft + AI coding tools abused for spread.
