weavedb-base@0.45.3

Affected versions of this package are vulnerable to Embedded Malicious Code that hides inside binary executable files triggered by a postinstall script. IronWorm is a sophisticated, Rust-based infostealer that functions as a self-replicating supply-chain attack. Its primary characteristics include:

• Credential Theft: It exhaustively scrapes developer machines and Kubernetes pods for over 80 types of secrets, including cloud provider tokens, AI API keys, and crypto wallets.

• Self-Replication: It hijacks compromised accounts to forge backdated commits in victims' GitHub repositories. It alters build hooks or GitHub Actions to propagate itself and automatically publishes trojanized packages to the npm registry.

• System Evasion: It uses an eBPF kernel rootkit to rewrite system logs and hide its processes from monitoring tools like ps and top.

• Remote Control: It establishes a Tor-based command-and-control channel to exfiltrate stolen data, download additional payloads, or execute remote shell commands on the infected machine.

Avoid using all malicious instances of the weavedb-base package.