July 14, 2026
1 min read
Breaking News: Multiple AsyncAPI npm packages compromised with a multi-staged dropper.
More details to follow.
Package name
Affected versions
@asyncapi/generator
3.3.1
@asyncapi/generator-components
0.7.1
@asyncapi/generator-helpers
1.1.1
@asyncapi/specs@
6.11.2, 6.11.2-alpha.1
See what your AI agents decide and whether it’s safe before it runs. Connect a repo in minutes.