Name of the Vulnerable Software and Affected Versions owl-orchard-apple-sunshine versions all

Description The issue concerns malicious code within the package that downloads and runs a script, resulting in a reverse shell being opened in the system. Any computer with this package installed or running should be considered fully compromised, and all secrets and keys stored on that computer should be rotated immediately from a different computer.

Recommendations Remove the owl-orchard-apple-sunshine package, however, be aware that this may not remove all malicious software resulting from its installation due to potential full control being given to an outside entity.