@ardeora/start-devtools (>=1.0.0 <=1.0.1), @carvajalconsultants/headstart (>=1.0.0 <=1.0.2) +26 more potentially affected by unknown CVE via @tanstack/virtual-file-routes (>=1.121.0-alpha.28 <=1.154.7)

@tanstack/virtual-file-routes NPM version =1.121.0-alpha.28, =1.0.0, =1.0.0, =0.1.0, =1.20.3-alpha.1, =1.111.10, =1.130.0, =1.121.0-alpha.28, =1.121.0-alpha.28, =1.121.0-alpha.28, =1.121.0-alpha.28, =1.20.3-alpha.1, =1.114.29, =1.130.0, =1.97.4, =1.120.20 and more Source cves: unknown CVE Source...

Malicious code in @tanstack/virtual-file-routes (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c95e413c2e182a7d35b0ec3ba9f2a979d63c77c1a7f20a6204059f7b66b433bc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...