By admin A sophisticated supply chain attack dubbed “TrapDoor” is actively compromising developers across npm, PyPI, and Crates.io, according to new research from Socket and collaborating security firms. First detected around May 22, the campaign has so far infected more than 34 malicious packages spanning roughly 384 versions, each carefully disguised as legitimate developer tools—ranging […]