Malicious code in requirejs-injector (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9d97c2ea570f4f2be827b6b8f1bbaff3230a6c0824401db8ce32b7d19d570bbb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Information Disclosure of Installed Extensions

It has been discovered that mechanisms used for configuration of RequireJS package loading are susceptible to information disclosure. This way a potential attack can retrieve additional information about installed system and third party extensions...