// platform
GCP incidents
Indexed Non-Human Identity credential leak incidents that affected GCP. Sorted by disclosure date.
2 incidents indexed
- ·CRITICAL9.4·confirmed
AntV npm Account Compromise: Mini Shai-Hulud Wave Hits 323 Packages (May 2026)
On 2026-05-19 the @antv npm publisher session was used to ship 639 malicious versions across 323 packages, the Mini Shai-Hulud campaign now totals 1,055 versions across 502 packages.
vector / npm supply chainplatforms / npm, GitHub, AWS, +2read / 22 min - ·CRITICAL9.0·confirmed
Bitwarden CLI Supply Chain Compromise (2026)
A malicious build of @bitwarden/cli was published to the public npm registry for roughly 90 minutes, exfiltrating cloud tokens, SSH keys, and AI tooling credentials from CI runners and developer machines.
vector / npm supply chainplatforms / npm, GitHub, Bitwarden, +3read / 6 min