Repost https://thehackernews.com/2022/04/npm-bug-allowed-attackers-to-distribute.htmlMalicious actors can pass off rogue libraries as legitimate and trick unsuspecting developers into installing them