pancake 
How Axios was pwned. TLDR: capitalism. Anyway scary shit how well coordinated was this attack.
Apr 3 at 5:14pmWeb
Show threadVictor1d ago
@pancake Exactly something I'm trying to prevent with goodpotatoproject.com
Show threadChris | cy1d ago
@pancake can you link this post?
edit: i googled it myself
https://github.com/axios/axios/issues/10636
Post Mortem: axios npm supply chain compromise · Issue #10636 · axios/axios

Post Mortem: axios npm supply chain compromise Date: March 31, 2026 Author: Jason Saayman Status: Remediation in progress On March 31, 2026, two malicious versions of axios (1.14.1 and 0.30.4) were...

GitHub