Mistral AI's NPM package was compromised
Mistral AI's official NPM package has been compromised as part of the Shai Hulud worm, a self-spreading supply chain attack. Users of version 2.2.4 should take immediate action.
This is part of the latest Shai Hulud worm, details at https://www.stepsecurity.io/blog/mini-shai-hulud-is-back-a-self-spreading-supply-chain-attack-hits-the-npm-ecosystem
https://www.npmjs.com/package/@mistralai/mistralai/v/2.2.4