Malicious code in zqdl333 (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0f6366a5f4a87b1ca15c8a0edbf77942b242f6a055cce26d3ad4e91ad92e7ae3 Any computer that has this package install...