Warning, version 1.14.1 of the npm core package axios is experiencing an active supply chain attack
Mar 31, 2026 13:04:54
Share to 
According to market news, Socket has detected that version 1.14.1 of the npm core package axios is experiencing an active supply chain attack. The attacker injected a malicious dependency package to implant malicious code into axios. Developers using axios are advised to immediately pin the version and review the project's lock files.
Latest News
The Federal Reserve is expected to cut interest rates twice this year to support the labor market
ChainCatcher
4月 4, 2026 00:45:43
The United States has doubled the reinsurance scale for the Strait of Hormuz to 40 billion dollars
ChainCatcher
4月 3, 2026 23:54:28
Naoris Protocol's quantum-resistant blockchain goes live as Bitcoin and Ethereum face 'Q-Day' threats
Coindesk
4月 3, 2026 23:44:38
Charles Schwab will provide cryptocurrency trading services, initially supporting Bitcoin and Ethereum
ChainCatcher
4月 3, 2026 23:26:06
CertiK: In March, a total of 46 security incidents were recorded, with total losses of approximately 39.8 million USD
ChainCatcher
4月 3, 2026 23:09:56
