supply chain security Packagist PHP malware open source

Supply Chain Attack Hits Packagist: Eight PHP Packages Compromised via GitHub-Delivered Malware

25 May 2026

Eight packages on Packagist, the primary dependency registry for PHP projects, were quietly backdoored in a supply chain attack that used GitHub infrastructure to serve Linux malware.

Eight packages on Packagist, the primary dependency registry for PHP projects, were quietly backdoored in a supply chain attack that used GitHub infrastructure to serve Linux malware. Not exactly the kind of update you want silently pulled into your production environment.

The attack followed a familiar playbook. Maintainer accounts were compromised, malicious code was pushed to legitimate repositories, and the packages continued to sit in Packagist looking entirely normal. Developers running routine dependency updates would have pulled down the infected versions without any obvious warning signs.

Hosting the malware payload on GitHub was a deliberate choice. Traffic to GitHub domains rarely raises eyebrows on corporate networks, and security tooling that might flag connections to sketchy infrastructure tends to give Microsoft-owned platforms a free pass. It's a useful piece of camouflage.

The incident is a fairly clean illustration of why supply chain security is such a stubborn problem. You can have solid application security hygiene and still get burned because someone upstream had a weak password or reused credentials from a previous breach. The attack surface isn't just your code anymore.

For PHP developers, the immediate advice is straightforward: audit your dependencies, check which versions you're pinning, and review recent updates from the affected packages. Locking dependencies to specific verified versions rather than floating ranges is not optional at this point, it's basic hygiene.

Packagist and the broader PHP ecosystem are not uniquely vulnerable here. npm, PyPI, and RubyGems have all had comparable incidents. The pattern keeps repeating because the underlying conditions keep repeating: maintainer accounts with weak credentials, insufficient review of published updates, and developer workflows that trust registries implicitly.

Until package registries enforce stronger authentication across the board and developers treat dependency updates with the same scrutiny as first-party code changes, expect more of the same.