2018-06-07 02:00:00
hackerone
PUBLISHED
crossenv was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.