Malware in npm package @ntnx/nx-react-components

malicious-version-published · active

A malicious version of the npm package @ntnx/nx-react-components was published containing malware. Any system with this package installed should be considered fully compromised, and all secrets and keys on that system should be rotated immediately from a different computer.

Affected packages

• npm@ntnx/nx-react-componentssee advisory

Sources

• ghsahttps://github.com/advisories/GHSA-rxf2-69g9-4hpq