Malware in npm package "anaylze-json" (typosquat)
typosquat-campaign · active
A malicious npm package named "anaylze-json" — a typosquat of "analyze-json" — was published and flagged by GitHub Advisory. Any system that installed or ran it should be treated as fully compromised, with all secrets and keys rotated immediately from a different machine.
Affected packages
- npmanaylze-json