Malicious Package

Overview instantsearch-web is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package...

MAL-2023-530 Malicious code in instantsearch-web (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1a27501212cebbbed635898a691dbc8dedd8d342d3c41666ab78875dc496daca Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...