@opensearch-project/opensearch

Malware in @opensearch-project/opensearch ## Overview The OpenSearch Project has sustained a security incident involving an external actor gaining force-push permissions within the project's CI infrastructure to embed malicious packages into four release versions of `@opensearch-project/opensearch`. Users are instructed to immediately take actions recommended in the **Remediation** section of this advisory. ## Affected Versions **Package**: `@opensearch-project/opensearch` | Version | Published (UTC) | Published (America/New_York) |