Name of the Vulnerable Software and Affected Versions sj-labc versions all

Description The issue concerns malicious code within the package that downloads and runs a script, resulting in a reverse shell being opened in the system. Any computer with this package installed or running should be considered fully compromised, necessitating the rotation of all secrets and keys stored on it from a different computer.

Recommendations Remove the sj-labc package, however, be aware that this may not remove all malicious software resulting from its installation due to potential full control being given to an outside entity. As a precaution, consider the computer fully compromised and take necessary steps to secure it, such as reinstalling the operating system and changing all sensitive information.