Name of the Vulnerable Software and Affected Versions: gratient version 0.5

Description: The issue concerns a user-facing library used for generating color gradients of text, which contained obfuscated, malicious code in version 0.5. This malicious code targets Windows platforms, harvesting information and credentials from the user's system and sending them to a remote server. Services that may be affected include Mullvad VPN and Telegram.

Recommendations: For version 0.5, avoid using this version of the gradient library to prevent potential information and credential harvesting. As a temporary workaround, consider restricting access to sensitive information on systems where this library is used until a safe version is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.