The popular Python package for monitoring data quality was briefly available as a malicious version. Provider Elementary ...

Claude Opus commit added malicious npm dependency in Feb 2026, enabling crypto theft and persistent RAT access.