shenmue.js-dev (=0.0.20) potentially affected by unknown CVE via syxx.js (=11.9.96)

syxx.js NPM version =11.9.96 is affected by a known vulnerability. The following packages have a transitive dependency on syxx.js and may be impacted: - shenmue.js-dev =0.0.20 Source cves: unknown CVE Source advisory: OSV:MAL-2024-144...

MAL-2024-143 Malicious code in shenmue.js-dev (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8d9db50cc4a7c28d282ae223537655ee93effd5621fb6d7bcba7cbcbcaa1f846 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...