0.0.1-security
2 years ago
2 years ago
Known vulnerabilities in the duplex-child-orocess package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for freeVulnerability | Vulnerable Version |
---|---|
duplex-child-orocess is a malicious package. This package contains a malicious code that infects Linux hosts with cryptominers by downloading a malicious Bash script from the attacker server via a Bitly URL. How to fix Malicious Package? Avoid using all malicious instances of the | * |