Description
opencv.js was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/505
Related Vulnerabilities
CVE-2021-21290 Vulnerability in maven package io.netty:netty-transport-native-unix-common-tests
CVE-2020-5259 Vulnerability in maven package org.webjars.npm:dojox
CVE-2022-0086 Vulnerability in npm package uppy
CVE-2020-6467 Vulnerability in maven package org.webjars.npm:electron
CVE-2018-11499 Vulnerability in maven package org.webjars.npm:node-sass