@matrix @LouisConde it’s a bit more complicated than that, the author apparently put very malicious code in the repo, but apparently it wasn’t actually called anywhere? Weird stuff…
https://social.handholding.io/objects/de6badba-137e-4c7d-bf2f-4388c1697fa7
@ademan
Oh. That's something different. I assumed they meant the peacenotwar module which isn't malicious.
@LouisConde
@Whitewall_Blasphemy
No. It's part of various software that uses the module.
@LouisConde
@matrix @LouisConde still malware though and the shithead that did it will probably keep his acct.