{"id":224910,"date":"2025-11-12T01:12:57","date_gmt":"2025-11-12T07:12:57","guid":{"rendered":"https:\/\/lifeboat.com\/blog\/2025\/11\/researchers-detect-malicious-npm-package-targeting-github-owned-repositories"},"modified":"2025-11-12T01:12:57","modified_gmt":"2025-11-12T07:12:57","slug":"researchers-detect-malicious-npm-package-targeting-github-owned-repositories","status":"publish","type":"post","link":"https:\/\/lifeboat.com\/blog\/2025\/11\/researchers-detect-malicious-npm-package-targeting-github-owned-repositories","title":{"rendered":"Researchers Detect Malicious npm Package Targeting GitHub-Owned Repositories"},"content":{"rendered":"<p><a class=\"aligncenter blog-photo\" href=\"https:\/\/lifeboat.com\/blog.images\/researchers-detect-malicious-npm-package-targeting-github-owned-repositories.jpg\"><\/a><\/p>\n<p>Veracode exposes npm package \u201c<a href=\"https:\/\/twitter.com\/acitons\">@acitons<\/a>\/artifact\u201d stealing GitHub tokens via build scripts.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Veracode exposes npm package \u201c@acitons\/artifact\u201d stealing GitHub tokens via build scripts.<\/p>\n","protected":false},"author":427,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[20],"tags":[],"class_list":["post-224910","post","type-post","status-publish","format-standard","hentry","category-futurism"],"_links":{"self":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts\/224910","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/users\/427"}],"replies":[{"embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/comments?post=224910"}],"version-history":[{"count":0,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts\/224910\/revisions"}],"wp:attachment":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/media?parent=224910"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/categories?post=224910"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/tags?post=224910"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}