Official jscrambler npm Package Compromised at 8.14.0
r/programming (Top) · July 11, 2026
curated by Heiko
The official jscrambler npm package was compromised at version 8.14.0, introducing malicious code into the dependency chain. Developers using this version should update immediately and audit their projects for potential exposure to the compromised artifact.
AI-generated summary (Heiko) · editorially responsible: J. Fuchs · How we use AI