This article has been indexed from Threatpost
In the latest software supply-chain attack, the code maintainer added malicious code to the hugely popular node-ipc library to replace files with a heart emoji and a peacenotwar module.
Read the original article: Dev Sabotages Popular NPM Package to Protest Russian Invasion