SOPHISTICATED cyberattacks over a 10-day period targeted a range of open source projects, including the Trivy security-scanner, Axios, and Anthropic’s Claude Code, underscoring the risk to software supply chains. Attackers exploited a misconfigured GitHub Action and the development team’s failure to recover from the incident to obtain credentials used to push out malicious code, while the lead maintainer’s account compromise enabled backdoor Trojans in development environments.
The breaches also affected Checkmarx’s KICS static-code analyser and the LiteLLM Python library, and Anthropic acknowledged the leak of Claude Code’s source code, publishing more than half a million lines. Jun Zhou, a full stack engineer at Straiker, said developer workstations are credential-rich, high-trust zones, and that Claude Code shipped a 59.8MB source map to a public registry despite having 25-plus bash security validators in its runtime.
The Axios incident involved more than 70,000 direct dependencies, illustrating how failures in publishing and credential hygiene can cascade across ecosystems. Experts emphasise that the supply chain should be treated as critical infrastructure with guardrails at every layer, according to Straiker and Black Duck.