The malicious version of Cline's npm package — 2.3.0 — was downloaded more than 4,000 times before it was removed.
The npm registry now includes Socket security analysis links directly on package pages to help developers assess supply chain risks.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results