Name of the Vulnerable Software and Affected Versions maybemaliciouspackage (affected versions not specified)

Description The issue concerns malicious code within the package that executes a postinstall script, printing the system's SSH keys to the console. There are no further signs of compromise indicated.

Recommendations Remove the package from your environment.