Description
proxy.js was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/515
Related Vulnerabilities
CVE-2022-23708 Vulnerability in maven package org.elasticsearch:elasticsearch
CVE-2016-6814 Vulnerability in maven package org.codehaus.groovy:groovy-all
CVE-2019-10409 Vulnerability in maven package hudson.plugins:project-inheritance
CVE-2017-16214 Vulnerability in npm package peiserver
CVE-2022-43430 Vulnerability in maven package com.compuware.jenkins:compuware-topaz-for-total-test