100
polyfill-io-loader uses polyfill[.]io, which was taken over and serves malicious code.
You're affected if you use polyfill-io-loader.
Remove this package from your application.
Link to vendor website