Packagist 4

• Famous Chollima Targets PHP Developers Through Compromised Packagist Package May 31, 2026
• Mini Shai-Hulud Hits @antv Ecosystem, 639 Compromised npm Package Versions May 18, 2026
• Mini Shai-Hulud Spreads to Packagist: Malicious Intercom PHP Package Follows npm Compromise Apr 30, 2026
• North Korea's Contagious Interview Campaign Spreads Across 5 Ecosystems, Delivering Staged RAT Payloads Apr 7, 2026