Checkmarx supply chain attack impacts Bitwarden npm distribution path
Bitwarden CLI was hit by the Checkmarx supply chain attack. Version 2026.4.0 shipped malicious code in bw1.js via a compromised GitHub Action. Bitwarden CLI has been compromised as part of the ongoing Checkmarx supply chain campaign, researchers warn. The affected version, @bitwarden/cli 2026.4.0, c
ORIGINAL SOURCE →via Security Affairs
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · conflict
- [CONFLICT] Intermodal Asia
- [CONFLICT] [Comment] Antibody-based malaria prevention in an intense perennial transmission setting
- [CONFLICT] [World Report] New Government aims to revitalise health in Hungary
- [CONFLICT] [Perspectives] Caring for the caregivers
- [CONFLICT] [Correspondence] Systematic health destruction in Iran by Operation Epic Fury
- [CONFLICT] [Correspondence] Microbiological governance and the Lancet Commission on Ukraine