Severity: Critical
CVSS Score: 10
All versions of `1337qq-js` contain malicious code. The package exfiltrates sensitive information through install scripts. It targets UNIX systems. The information exfiltrated includes: - Environment variables - Running processes - /etc/hosts - uname -a - npmrc file ## Recommendation Remove the package from your system and rotate any compromised credentials.