AppsFlyer Web SDK used to spread crypto stealer JavaScript code

Malicious JavaScript code delivered by the AppsFlyer Web SDK hijacked cryptocurrency, potentially in a supply-chain attack.
Computer Weekly

Salesforce tracks possible ShinyHunters campaign targeting its users

Salesforce warned users of an uptick in malicious activity targeting Experience Cloud customers with misconfigured user settings via an open source tool.
GitHub

salesforce/eslint-plugin-lwc

Starting with v3.0.0, @lwc/eslint-plugin-lwc only supports eslint@v9. Use @lwc/[email protected] for older versions of eslint.