DuckDB confirms its Node.js and Wasm packages were attacked in the npm supply chain

Sep 10, 2025 07:37:51

Share to

ChainCatcher news, DuckDB's official Twitter account stated that the DuckDB Node.js and Wasm packages were compromised with malware in a recent npm supply chain attack. The official team has investigated and deprecated the affected versions, while releasing new versions. DuckDB stated that, according to npm data, no users have downloaded the affected packages. The team has released a security announcement detailing the post-analysis and response measures.

Latest News

Data: BERA rose over 35%, BANANAS31 fell over 11%

ChainCatcher

Jan 01, 2026 04:30:27

Data: BTC total network contract open interest decreased by 5.12% in 24 hours

ChainCatcher

Jan 01, 2026 00:42:04

Flow Foundation, a trading platform has flaws in its AML/KYC processes

ChainCatcher

Jan 01, 2026 00:35:05

Flow Foundation expresses concerns about the deficiencies in the AML/KYC processes of a certain exchange

ChainCatcher

Jan 01, 2026 00:15:50

Senator Lummis: The 2026 Responsible Financial Innovation Act allows large banks to provide digital asset custody, staking, and payment services

ChainCatcher

Jan 01, 2026 00:08:48

Recent Fundraising

$10M Dec 30, 2025

-- Dec 26, 2025

$1M Dec 25, 2025

New Tokens

Dec 30, 2025

oooo OOOO

Dec 30, 2025

Dec 29, 2025

Latest Updates on 𝕏

Justin Sun Followed ManusAI

Dec 30, 2025

Sandeep Nailwal Followed Telcoin

Dec 30, 2025

Vance Spencer Followed trade.xyz

Dec 30, 2025