JFrog says six malicious npm packages used hidden install-time execution, JSONKeeper fetches, and sandbox checks to enable remote access.
research-software-ecosystem-content / datasets / biotools_bioschemas_files_list.txt Tools Platform Ecosystem bot build bioschemas RDF dump on Sun Feb 8 03:01:07 UTC 2026 379f7e0 · 5 months ago ...