JFrog says six malicious npm packages used hidden install-time execution, JSONKeeper fetches, and sandbox checks to enable remote access.
"The decision will make it possible to hold Russia's senior political and military leadership to account specifically for the crime of aggression, not merely for its consequences," Zelensky said.