CSO Online

SAP npm package attack highlights risks in developer tools and CI/CD pipelines

Researchers say the campaign targeted developer credentials and cloud secrets while abusing trusted publishing and AI coding ...

Official SAP npm packages compromised to steal credentials

Multiple official SAP npm packages were compromised in what is believed to be a TeamPCP supply-chain attack to steal ...
The Hacker News

SAP-Related npm Packages Compromised in Credential-Stealing Supply Chain Attack

SAP npm packages poisoned on April 29, 2026 + AES-256-GCM encrypted credential theft + AI coding tools abused for spread.
Yahoo! Sports

Yahoo Fantasy API

The Yahoo Fantasy Sports API gives developers access to real-time fantasy data across Football, Baseball, Basketball, and Hockey - including leagues, teams, players, and matchups. Built on a RESTful, ...
SecurityWeek

1,800 Hit in Mini Shai-Hulud Attack on SAP, Lightning, Intercom

Over 1,800 developers were affected by the Mini Shai-Hulud supply chain attack that hit the PyPi, NPM, and PHP ecosystems ...
InfoWorld

Oracle NetSuite announces AI coding skills for SuiteCloud developers

New SuiteCloud Agent Skills will give AI coding assistants NetSuite-specific knowledge to help developers customize ERP ...