Malicious code in cms-ui-components (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2e5d43978f9860bd618fa68a993d8fa1b0b3f1ba27d64c713c37ae2234e0093d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious Package

Overview cms-ui-components is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package...