Npm/Zohocrm-Nodejs-Sdk-3.0 | GitLab Advisory Database

Malicious code in zohocrm-nodejs-sdk-3.0 (npm)

This malicious package was published during the PhantomRaven NPM campaign. The malicious payload steals tokens and credentials.