Security
Axios x Bitwarden CLI: CTI Analysis – Two Incidents, One Attack Surface
Two separate npm supply chain compromises – Axios (March 2026) and Bitwarden CLI (April 2026) – reveal distinct operational models on the same attack surface. Axios shows a clean delivery chain with documented propagation; Bitwarden CLI centers on CI pipeline abuse and secret harvesting. The tactical correlation is strong, but infrastructural correlation is unproven.
