Malware in npm package ecto-spirit-win-k4n8
malicious-version-published · active
The npm package ecto-spirit-win-k4n8 has been identified as malware. Any machine where it was installed or run should be treated as fully compromised, and all secrets and keys on that machine should be rotated from a different, clean computer.
Affected packages
- npmecto-spirit-win-k4n8