A newly detected malware strain of Shai Hulud was discovered in an npm package called "@vietmoney/react-big-calendar." This appears to be in early testing stages with limited spread, suggesting the attackers may have been testing their payload. The new variant includes several updates from previous versions, such as changed file names, a new GitHub repository description ("Goldox-T3chs: Only Happy Girl"), improved error handling for TruffleHog timeouts, and better Windows compatibility for package publishing.