Malware in npm package rate-limit-flexible (GHSA-v7vx-48xw-jwm8)
malicious-version-published · active
The npm package rate-limit-flexible has been flagged as containing malware. Any system with this package installed or running should be considered fully compromised, and all secrets and keys on that system should be rotated immediately from a different machine.
Affected packages
- npmrate-limit-flexible