Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned.

Description: The issue involves a malicious package that exfiltrates secrets to a target server. No further details are provided about the nature of the issue or its potential impact.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.