Find real vulnerabilities before they ship
Vulnerability Database › npm › CVE-2017-16206
The cofee-script module exfiltrates sensitive data such as a user's private SSH key and bash history to a third party server during installation.
Base Score