According to WuShuo, SlowMist Chief Information Security Officer 23pds issued a security alert stating that the latest variant of the NPM supply chain attack, Shai-Hulud 3.0, has reappeared, urging project teams and platforms to strengthen their defenses. Previously, the Trust Wallet API key leak may have been the result of the Shai-Hulud 2.0 attack.