OpenSourceMalware found that npm and PyPI malicious package activity grew at similar rates from January through mid-May 2026, with PyPI growth partly driven by campaigns that published across both ecosystems. The DPRK-linked Contagious Interview campaign was cited as consistently publishing to both npm and PyPI, with PyPI activity appearing alongside its largest npm drops. The report also warns that account takeovers such as TeamPCP's Trivy and Mini Shai-Hulud activity should not distract from dependency confusion and typosquatting attacks. Separately, malicious ClawHub skills showed that AI-skill registries were abused early, targeting crypto, marketing, CLI, productivity, and developer users.