Entidades

Amazon q CLI

Incidents implicated systems

Incidente 12102 Reportes
Malicious Nx npm Packages Reportedly Weaponize AI Coding Agents for Data Exfiltration

2025-08-21

Malicious versions of the popular Nx monorepo tool and plugins were reportedly published to npm after attackers compromised its CI workflow. The malware's postinstall script reportedly harvested credentials and exfiltrated data, reportedly weaponizing local AI coding agents such as Claude Code, Gemini, and Amazon q. By invoking unsafe flags, it allegedly coerced the tools into scanning developer machines for sensitive files, marking one of the first known AI-assisted supply chain attacks.

Más

Entity

Malicious actors compromising Nx’s CI/CD pipeline and publishing tainted npm packages

Más
Entity

Anthropic

Más
Entity

Google

Más
Entity

Amazon

Más
Entity

Nx users and organizations installing compromised npm packages

Más
Entity

Nx (monorepo tool and plugins)

Más
Entity

npm registry

Más
Entity

Claude Code CLI

Más
Entity

Google Gemini CLI

Más
Entity

GitHub

Más