Malware in npm package "downlynpm"
malicious-version-published · active
The npm package "downlynpm" has been identified as containing malware. Any system where it was installed or run should be considered fully compromised, and all secrets and keys on that system should be rotated immediately from a different machine.
Affected packages
- npmdownlynpm