Security researchers at Veracode stumbled upon two seemingly harmless software packages on the npm repository.

Two malicious NPM packages contain code that would delete production systems when triggered with the right credentials.

The tool, created by university researchers, is designed to find and automatically create a patch for vulnerabilities in ...