VYPR

npm package

ikst

pkg:npm/ikst

Malware

1 malicious version on record

One or more versions of this package have been flagged as containing malicious code. Audit any system that installed an affected version.

Vulnerabilities (1)

  • CVE-2017-16041MedJun 4, 2018
    affected < 1.1.2fixed 1.1.2

    ikst versions before 1.1.2 download resources over HTTP, which leaves it vulnerable to MITM attacks.