# [[s1ngularity supply chain attack]] ![[s1ngularity supply chain attack.svg]] The s1ngularity [[Supply Chain Attack]] is an attack launched on [[2025-08-26]] where multiple malicious versions of the [[Nx]] build system package were published to the [[Node Package Manager|NPM]] registry[^1]. Once installed, a script called `telemetry.js` harvested: - [[Cryptocurrency]] wallets - [[GitHub]] and npm tokens - [[SSH]] keys and more. Of note was that the attack also utilized [[Artificial Intelligence|AI]] command-line tools ([[Claude]], [[Gemini]], and [[Q]]) to help it gather more sensitive developer information. ## Check if your credentials have been compromised Run [this gist](https://gist.github.com/jdbaldry/a72c1a7b8273091f716e587423fe9370) by my colleague [[Jack Baldry]] to determine whether or not you have been affected by the s1ngularity attack. A quicker and way less thorough check would be to check whether you have a GitHub repo that has `s1ngularity` in the name. %% # Excalidraw Data ## Text Elements ## Drawing ```json { "type": "excalidraw", "version": 2, "source": "https://github.com/zsviczian/obsidian-excalidraw-plugin/releases/tag/2.1.4", "elements": [ { "id": "4y8R7iOA", "type": "text", "x": 118.49495565891266, "y": -333.44393157958984, "width": 3.8599853515625, "height": 24, "angle": 0, "strokeColor": "#1e1e1e", "backgroundColor": "transparent", "fillStyle": "solid", "strokeWidth": 2, "strokeStyle": "solid", "roughness": 1, "opacity": 100, "groupIds": [], "frameId": null, "roundness": null, "seed": 967149026, "version": 2, "versionNonce": 939059582, "isDeleted": true, "boundElements": null, "updated": 1713723615080, "link": null, "locked": false, "text": "", "rawText": "", "fontSize": 20, "fontFamily": 4, "textAlign": "left", "verticalAlign": "top", "containerId": null, "originalText": "", "lineHeight": 1.2 } ], "appState": { "theme": "dark", "viewBackgroundColor": "#ffffff", "currentItemStrokeColor": "#1e1e1e", "currentItemBackgroundColor": "transparent", "currentItemFillStyle": "solid", "currentItemStrokeWidth": 2, "currentItemStrokeStyle": "solid", "currentItemRoughness": 1, "currentItemOpacity": 100, "currentItemFontFamily": 4, "currentItemFontSize": 20, "currentItemTextAlign": "left", "currentItemStartArrowhead": null, "currentItemEndArrowhead": "arrow", "scrollX": 583.2388916015625, "scrollY": 573.6323852539062, "zoom": { "value": 1 }, "currentItemRoundness": "round", "gridSize": null, "gridColor": { "Bold": "#C9C9C9FF", "Regular": "#EDEDEDFF" }, "currentStrokeOptions": null, "previousGridSize": null, "frameRendering": { "enabled": true, "clip": true, "name": true, "outline": true } }, "files": {} } ``` %% [^1]: Bar, M. & McCarthy, R. (2025). *s1ngularity: supply chain attack leaks secrets on GitHub: everything you need to know*. Retrieved from https://www.wiz.io/blog/s1ngularity-supply-chain-attack