Active Supply Chain Attack Compromises Packages on npm

https://www.securitricks.com/attackreports/active-supply-chain-attack-compromises-packages-on-npm