🚨 A major supply chain attack is underway: a trusted developer’s NPM account was compromised. The affected packages have been downloaded over a billion times, posing a potential risk to the entire JavaScript ecosystem.