Name of the Vulnerable Software and Affected Versions eslint-scope version 3.7.2

Description The issue concerns malicious code in a specific version of eslint-scope. This code reads the user's .npmrc file and sends any found authentication tokens to remote servers.

Recommendations Revoke all npm tokens to mitigate the issue.