Nx npm Packages Compromised in 'S1ngularity' Attack With Second-Wave Exploitation Emerging

Researchers tie the breach to a flawed GitHub Actions workflow that exposed publish credentials.