Malicious pgserve, automagik developer tools
Application developers are being warned that malicious versions of pgserve, an embedded PostgreSQL server for application development, and automagik, an AI coding tool, have been dropped into the npm JavaScript registry,
Original Disclosure
https://www.csoonline.com/article/4162257/malicious-pgserve…
Severity
medium
Sector
finance
Disclosure date
April 23, 2026
Indexed
2 hours, 56 minutes ago