URL has been copied successfully!
Mastra AI Framework Poisoned in npm Supply-Chain Attack
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

Mastra AI Framework Poisoned in npm Supply-Chain Attack


Tags: , , , , , ,

Microsoft-Owned GitHub, Which Runs npm, Previews Supply-Chain Security Fixes. The popular Mastra AI framework, used to build artificial intelligence agents, workflows and retrieval-augmented generation pipelines, has been poisoned by attackers, and Microsoft-owned GitHub has advised all developers to downgrade Mastra, pending compromised packages being found and eradicated.

First seen on govinfosecurity.com

Jump to article: www.govinfosecurity.com/mastra-ai-framework-poisoned-in-npm-supply-chain-attack-a-32003

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. Cybersecurity Snapshot: Prompt Injection and Data Disclosure Top OWASP’s List of Cyber Risks for GenAI LLM Apps
  2. 8 Cyber Predictions for 2025: A CSO’s Perspective
  3. Cybersecurity Snapshot: CISA Analyzes Malware Used in SharePoint Attacks, as U.K. Boosts Cyber Assessment Framework
  4. Modern supply-chain attacks and their real-world impact