■■■□□ Malicious PyPI and npm Packages Discovered Exploiting Dependencies in Supply Chain Attacks.
https://www.zscaler.com/blogs/security-research/supply-chain-risk-python-termncolor-and-colorinal-explained
https://thehackernews.com/2025/08/malicious-pypi-and-npm-packages.html