Coinbase effectively prevented a supply chain attack on its open-source agentkit. The incident was detected on March 14, 2025, involving malicious code in the CI/CD pipeline. Swift actions by Coinbase and security teams thwarted potential severe impacts.

The attacker manipulated GitHub permissions to implant harmful code which aimed to gather sensitive information without sophisticated tools. Coinbase’s proactive approach secured the integrity of its blockchain infrastructure.

This event emphasizes the critical importance of robust security measures in open-source software within the expanding crypto landscape, particularly after the $1.5 billion in exploits reported in 2025.