Description
proxy.js was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/515
Related Vulnerabilities
CVE-2021-43138 Vulnerability in maven package org.webjars.npm:async
CVE-2018-18854 Vulnerability in maven package io.spray:spray-json_2.10
CVE-2013-7380 Vulnerability in npm package ep_imageconvert
CVE-2020-13921 Vulnerability in maven package org.apache.skywalking:storage-jdbc-hikaricp-plugin
CVE-2019-1003058 Vulnerability in maven package org.jvnet.hudson.plugins:ftppublisher