Malicious code in wrf-grid-setup (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware eaf07ec4e4422ea585def46dd4f2468efa7d305b876e927ecdfa67cb4d1258f2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious Package

Overview wrf-grid-setup is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package wa...