Malware in npm package crypto-javascript
malicious-version-published · active
The npm package crypto-javascript has been identified as malware. Any system with this package installed should be treated as fully compromised, and all secrets and keys on that system should be rotated immediately from a different machine.
Affected packages
- npmcrypto-javascript