Description
`fabric-js` was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/487
Related Vulnerabilities
CVE-2018-1000865 Vulnerability in maven package org.kohsuke:groovy-sandbox
CVE-2022-35915 Vulnerability in npm package @openzeppelin/contracts-upgradeable
CVE-2018-1000136 Vulnerability in npm package electron
CVE-2022-36919 Vulnerability in maven package org.jenkins-ci.plugins:coverity
CVE-2021-32769 Vulnerability in maven package io.micronaut:micronaut-core