[Aspie96]

To know what's actually going on here, one must open the revision history of the top comment, and view the last version from the OP (since it was then edited by the maintainer). See: https://web.archive.org/web/20220317042712/https://github.co...

The issue is also described in the National Vulnerability Database: https://nvd.nist.gov/vuln/detail/CVE-2022-23812

Relevant: https://snyk.io/blog/peacenotwar-malicious-npm-node-ipc-pack...