网络安全研究人员在npm注册表中发现了36个恶意包，这些包伪装成Strapi CMS插件，但携带不同的有效载荷，用于Redis和PostgreSQL利用、部署反向Shell、收集凭据并投放持久化植入程序。

Strapi plugins exploit Redis and PostgreSQL via postinstall scripts, enabling persistent access and data theft.

This repository contains an example application that demonstrates how to capture images from a Raspberry Pi using the camera module, store them in Redis Hashes and render them in a web application.

Installs version 2.4.17, listens on default port 6379 with default settings. Sets up 2nd instance on port 6900, binds to address 10.1.2.3 (instead of all available interfaces), sets max memory to 1 ...