100
psgganesh/anchor uses polyfill[.]io, which was taken over and serves malicious code.
You're affected if you use psgganesh/anchor.
Remove this package from your application.
Link to vendor website