Description
proxy.js was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/515
Related Vulnerabilities
CVE-2019-10431 Vulnerability in maven package org.jenkins-ci.plugins:script-security
CVE-2020-8124 Vulnerability in maven package org.webjars.npm:url-parse
CVE-2017-16155 Vulnerability in npm package fast-http-cli
CVE-2017-18353 Vulnerability in npm package rendertron-middleware
CVE-2023-40037 Vulnerability in maven package org.apache.nifi:nifi-dbcp-base