node-ipc is a malicious package. The vulnerability exists because it contains or downloads malicious codes that targets users with IP located in Russia or Belarus, and overwrites their files with a heart emoji.
github.com/advisories/GHSA-3mpp-xfvh-qh37
github.com/advisories/GHSA-8gr3-2gjw-jj7g
github.com/RIAEvangelist/node-ipc/blob/847047cf7f81ab08352038b2204f0e7633449580/dao/ssl-geospec.js
github.com/RIAEvangelist/node-ipc/commit/847047cf7f81ab08352038b2204f0e7633449580
github.com/RIAEvangelist/node-ipc/commit/b156ff40dd9eaa992edff0e8d092a6da0858da03
github.com/RIAEvangelist/node-ipc/issues/233
github.com/RIAEvangelist/node-ipc/issues/236
security.netapp.com/advisory/ntap-20220407-0005/