> The affected packages are not part of the official Laravel framework. They are third-party localization packages used by Laravel applications.

Also, whats up with this wave of supply chain attacks?