Malicious code in crypto-dev (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6bed52b1811db7c40f9bfbc1e7e15add32d6e51e3ec04d0bf81faf038a5a1c88 Any computer that has this package install...