AppsFlyer Web SDK used to spread crypto stealer JavaScript code

Malicious JavaScript code delivered by the AppsFlyer Web SDK hijacked cryptocurrency, potentially in a supply-chain attack.
GitHub

Agent Runner Laravel SDK

Tool callbacks — Agent Runner asks Laravel to execute a registered tool Status callbacks — Agent Runner notifies about session state changes All requests in both directions are signed with HMAC-SHA256 ...