Home / Security updates / Security Update: Shai Hulud 2.0 Supply-Chain Malware
Security Update: Shai Hulud 2.0 Supply-Chain Malware
Security updates detail rendered from /security-updates/upd_6e28e01ab27adbf8.
Overview
| ID | upd_6e28e01ab27adbf8 |
| Collection | Security Updates |
| Provider | SafeBase |
| Company | SavvyMoney |
| URL | - |
| Counts | - |
| Updated | - |
Raw record
| Field | Value |
|---|---|
| id | upd_6e28e01ab27adbf8 |
| providerId | safebase |
| organizationId | org_90b9ec840d9cbacb |
| trustCenterId | tc_8976196922819ae6 |
| title | Security Update: Shai Hulud 2.0 Supply-Chain Malware |
| message | Dear Partner, We want to provide clarity regarding the recently reported Shai Hulud 2.0 supply-chain malware affecting specific open-source packages. SavvyMoney has completed an internal review and **has not been impacted**. #### Validated Findings - There is **no evidence** of impact to SavvyMoney’s codebase, infrastructure, partner integrations, or production systems. - Our security team performed a full review of dependency packages, development pipelines, and build systems. No affected components were identified. - As part of standard protocol, we confirmed all credentials, pipeline secrets, and access tokens remain secure and rotated as required by policy. - All SavvyMoney services are operating normally, and no action is required from partners. We take supply-chain security seriously and continue to monitor this event in coordination with our security vendors and ecosystem partners. If new information emerges, we will notify you. If you have any questions, please conta |
| url | - |
| publishedAt | 2025-11-25 |
| source | {
"field": "statuspage/public/compliance-update",
"category": "vulnerabilities"
} |
| company | {
"id": "org_90b9ec840d9cbacb",
"name": "SavvyMoney",
"domains": [
"trust.savvymoney.com",
"savvymoney.com"
]
} |
| trust_center | {
"id": "tc_8976196922819ae6",
"name": "SavvyMoney",
"url": "https://trust.savvymoney.com",
"host": "trust.savvymoney.com"
} |
| provider | {
"id": "safebase",
"name": "SafeBase"
} |
| links | {
"self": "/v1/security-updates/upd_6e28e01ab27adbf8",
"company": "/v1/companies/org_90b9ec840d9cbacb",
"trust_center": "/v1/trust-centers/tc_8976196922819ae6",
"provider": "/v1/providers/safebase"
} |
Get this page with API
Rendered from the bluedoor Trust Centers API. Reproduce it:
GET https://api.bluedoor.sh/trust-centers/v1/security-updates/upd_6e28e01ab27adbf8JSON