Malware in npm package web3-util (GHSA-qjvc-v9v6-xh96)
malicious-version-published · active
The npm package web3-util has been flagged as containing malware. Any system with this package installed should be considered fully compromised, and all secrets and keys on that system should be rotated immediately from a different, clean computer.
Affected packages
- npmweb3-util