Description
The module botbait is a tool to be used to track bot and automated tools usage with-in the npm ecosystem. botbait is known to record and track user information. The module tracks the following information. Source IP process.versions process.platform How the module was invoked (test, require, pre-install)
Remediation
References
https://nodesecurity.io/advisories/483
Related Vulnerabilities
CVE-2019-6283 Vulnerability in maven package org.webjars.npm:node-sass
CVE-2023-31716 Vulnerability in npm package @frangoteam/fuxa
CVE-2022-31147 Vulnerability in maven package org.webjars:jquery-validation
CVE-2019-16772 Vulnerability in npm package serialize-to-js
CVE-2018-6561 Vulnerability in maven package org.webjars.bowergithub.dojo:dijit