The Register reports that repositories named Miasma-Open-Source-Release published the Miasma supply-chain attack toolkit on GitHub, exposing code for attacks against PyPI, npm, RubyGems, Artifactory, GitHub Actions, AI coding-tool configs, and SSH lateral movement before GitHub removed the repos.
Miasma worms its way onto GitHub as attack kit goes open source
The Register reports that repositories named Miasma-Open-Source-Release published the Miasma supply-chain attack toolkit on GitHub, exposing code for attacks against PyPI, npm, RubyGems, Artifactory, GitHub Actions, AI coding-tool configs, and SSH lateral movement before GitHub removed the repos.
Source: The Register