Mini Shai-Hulud: SAP’s npm Pipeline Poisoned to Drain Enterprise Secrets
April 29, 2026 | TeamPCP Attribution | Active Exfiltration Confirmed What Hit Four packages from SAP's Cloud Application Programming Model (CAP) toolchain were poisoned: @cap-js/sqlite, @cap-js/postgres, @cap-js/db-service, and mbt —…
