MAL-2024-9186 Malicious code in sp-api-app-cdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 13c1afd5646e2a56f333e462e72e1410090f84341d7c0c542598ef4a3061a180 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious Package

Overview sp-api-app-cdk is a malicious package. This package contains malicious code that collects sensitive information about the victim and sends it to the attacker's remote server. While this package might be attempting to impersonate a valid organization, there is no connection between that...