The node-ipc virus is a dependency attack from @RIAEvangelist.
I have added process.exit(1)
for saftey reasons.
Original virus: https://github.com/RIAEvangelist/node-ipc/blob/847047cf7f81ab08352038b2204f0e7633449580/dao/ssl-geospec.js
Links:
- https://nvd.nist.gov/vuln/detail/CVE-2022-23812
- https://gist.github.com/MidSpike/f7ae3457420af78a54b38a31cc0c809c
- https://archive.ph/n8oBX
- https://github.com/zlw9991/node-ipc-dependencies-list
- https://web.archive.org/web/20220318014241/https://github.com/RIAEvangelist/node-ipc/issues/401
- https://www.youtube.com/watch?v=2M-L0yPbtPE