Microsoft Restores Some GitHub Repos, Keeps Others Offline as Miasma Probe Continues

Microsoft on Monday confirmed that it temporarily removed some GitHub repositories in response to a recent security incident that led to 73 of its open-source projects being compromised to inject an information stealer into the code. "Our priority is to protect customers and the broader ecosystem," a Microsoft spokesperson told The Hacker News via email. "We temporarily removed some

The article reports that Microsoft temporarily removed, and is now selectively restoring, GitHub repositories after 73 open-source projects were compromised in the Miasma/Shai-Hulud supply-chain campaign, which injected credential-stealing malware into code used heavily with AI-assisted development tools.[1][3][5][6] According to Microsoft and independent researchers, the malware targeted developers using AI coding environments such as Claude Code and Gemini CLI, stealing authentication credentials and attempting to propagate to additional repositories and packages.[1][2][5] From a CyberSE.AI perspective, this illustrates a critical AI software supply-chain risk: compromises in foundational open-source repos and CI/CD pipelines can silently weaponize AI tooling ecosystems, exfiltrate secrets from developer environments, and propagate to downstream AI agents and applications. Organizations should respond by hardening their AI-oriented build chains with SBOM and provenance checks, enforcing signed artifacts, isolating AI-assisted dev environments, and continuously monitoring AI-integrated repos and pipelines for anomalous changes and credential theft patterns.