SlowMist founder Cosine said that Lottie Player was attacked by supply chain poisoning, and Ace Drainer's phishing gang poisoned Lottie Player, a front-end scripting module relied on by well-known Web3 projects. Fortunately, it was discovered in time, and the impact should not be large. If your project uses the Lottie Player module, check to see if malicious code has been introduced (the current known version 2.0.4 and the latest 2.0.8 version do not have malicious code).