Description
`sqlite.js` was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/491
Related Vulnerabilities
CVE-2020-28442 Vulnerability in maven package org.webjars.npm:js-data
CVE-2022-36922 Vulnerability in maven package org.jenkins-ci.plugins:lucene-search
CVE-2018-20801 Vulnerability in npm package highcharts
CVE-2020-19697 Vulnerability in npm package editor.md
CVE-2021-23331 Vulnerability in maven package com.squareup:connect