やっとこ詳細にまとめていただいてるのを読みました。ぐええ。
Alert: peacenotwar module sabotages npm developers in the node-ipc package to protest the invasion of Ukraine | Snyk https://snyk.io/blog/peacenotwar-malicious-npm-node-ipc-package-vulnerability/
SnykAlert: peacenotwar module sabotages npm developers in the node-ipc package to protest the invasion of Ukraine | SnykVue.js users using the dependency “node-ipc” are experiencing a supply chain attack protesting the invasion of Ukraine, from a package named “peacenotwar”.