On May 13, 2026, it was reported that the hacker team TeamPCP launched a supply chain attack targeting the NPM ecosystem by open-sourcing a worm virus named Shai-Hulud. The virus tampered with the CI/CD pipelines of well-known open-source projects, embedding malicious code designed to steal credentials into officially maintained packages. Exploiting vulnerabilities in the GitHub Actions OIDC trust chain, the attackers published malicious packages with SLSA Level 3 security signatures under legitimate identities, successfully bypassing supply chain security detection tools. This attack resulted in 62 official packages and 404 malicious versions being infected with the worm. The @tanstack/react-router package alone exceeded 12 million downloads in a single week, with a conservative estimate of over a million affected projects worldwide, ranging from individual developers to Fortune 500 companies. The worm virus possesses self-replicating and continuous spreading capabilities, achieving lateral propagation by stealing credentials for AWS/GCP/GitHub/SSH and installing persistent daemons in user systems. As of May 12, npm and PyPI have removed all confirmed malicious versions, though cached copies may still exist on some regional mirror sites.