@antv/gi-assets-advance (>=1.0.0 <=2.5.22), @antv/gi-assets-basic (>=1.0.0 <=2.4.40) +15 more potentially affected by unknown CVE via @antv/graphin-icons (=1.0.0)

@antv/graphin-icons NPM version =1.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on @antv/graphin-icons and may be impacted: - @antv/gi-assets-advance =1.0.0, =1.0.0, =1.0.0, =1.0.0, =0.1.0, =0.0.4, =0.0.1, =0.1.0, =1.0.4, =1.0.11, =0.2.6-beta.4,...

@action.sustainability/storybook-dashboard (>=0.1.1 <=0.1.5), @agentlab/ldkg-ui-charts (>=0.1.4 <=0.1.7) +309 more potentially affected by unknown CVE via @antv/g-device-api (=1.6.13)

@antv/g-device-api NPM version =1.6.13 is affected by a known vulnerability. The following packages have a transitive dependency on @antv/g-device-api and may be impacted: - @action.sustainability/storybook-dashboard =0.1.1, =0.1.4, =1.1.15, =0.1.0, =1.0.17-beta.1, =0.0.1-beta.2, =1.2.0-beta.0,...

@antelopecloud/components (>=0.3.0 <=0.5.12), @baoxi/viser (=2.5.1) +327 more potentially affected by unknown CVE via @antv/g2-plugin-slider (>=2.0.0 <=2.1.1)

@antv/g2-plugin-slider NPM version =2.0.0, =0.3.0, =2.5.1, =2.6.0 - @bizcharts/area-percentage =0.0.2 - @bizcharts/area-range =0.0.2 - @bizcharts/area-stacked =0.0.2 - @bizcharts/area-with-negative =0.0.2 - @bizcharts/bar-basic =0.0.2 - @bizcharts/bar-basic-column =0.0.2 -...

@2nova/wu-ui (>=1.1.0 <=1.3.12), @action.sustainability/storybook-dashboard (>=0.1.1 <=0.1.5) +1678 more potentially affected by unknown CVE via @antv/attr (>=0.0.7 <=0.3.5)

@antv/attr NPM version =0.0.7, =1.1.0, =0.1.1, =0.1.1, =0.1.0, =0.0.2, =0.1.2, =0.1.0, =0.5.0-alpha.0, =0.1.0, =0.5.0-alpha.0, =0.5.0-alpha.0, =0.1.0, =0.1.0, =0.1.0, =0.5.0-alpha.0 and more Source cves: unknown CVE Source advisory: OSV:MAL-2026-3852...

1byte-react-design (>=1.7.1 <=1.14.0), @agentscope-ai/chat (>=1.1.43 <=1.1.63-beta.1778041790294) +249 more potentially affected by unknown CVE via @antv/g-canvas (>=2.0.0 <=2.2.0)

@antv/g-canvas NPM version =2.0.0, =1.7.1, =1.1.43, =5.0.48, =1.0.1, =2.0.0, =2.0.0, =1.0.0, =2.0.0, =3.0.3, =3.0.0, =0.5.6, =1.1.0, =1.1.0, =2.0.0, =2.0.0, =2.1.1 and more Source cves: unknown CVE Source advisory: OSV:MAL-2026-3911...

@binarysee/widgets (=1.0.5), @binlove/widgets (=1.0.5) potentially affected by unknown CVE via @antv/s2-react (=2.0.0-next.28)

@antv/s2-react NPM version =2.0.0-next.28 is affected by a known vulnerability. The following packages have a transitive dependency on @antv/s2-react and may be impacted: - @binarysee/widgets =1.0.5 - @binlove/widgets =1.0.5 Source cves: unknown CVE Source advisory: OSV:MAL-2026-4078...

fhrons-mobile (=1.1.22-beta.8) potentially affected by unknown CVE via @antv/f6-wx (=0.0.7)

@antv/f6-wx NPM version =0.0.7 is affected by a known vulnerability. The following packages have a transitive dependency on @antv/f6-wx and may be impacted: - fhrons-mobile =1.1.22-beta.8 Source cves: unknown CVE Source advisory: OSV:MAL-2026-3907...

@luo-luo/material (>=0.0.1 <=0.0.5-alpha), @yccw/common (>=0.5.85-1 <=2.0.64) +4 more potentially affected by unknown CVE via @antv/g6-react-node (>=1.4.4 <=1.4.8)

@antv/g6-react-node NPM version =1.4.4, =0.0.1, =0.5.85-1, =1.3.0, =1.5.0 - yccw-common =0.5.85 - zzcom =1.0.0 Source cves: unknown CVE Source advisory: OSV:MAL-2026-3995...

@action.sustainability/storybook-dashboard (>=0.1.1 <=0.1.5), @agentlab/ldkg-ui-charts (>=0.1.4 <=0.1.7) +255 more potentially affected by unknown CVE via @antv/l7-map (>=2.10.0 <=2.25.4)

@antv/l7-map NPM version =2.10.0, =0.1.1, =0.1.4, =1.1.15, =0.1.0, =1.0.17-beta.1, =0.0.1-beta.2, =1.2.0-beta.0, =0.0.2, =0.0.2, =1.0.1, =0.0.2, =0.0.1, =0.0.4 and more Source cves: unknown CVE Source advisory: OSV:MAL-2026-4043...

nimiq-account (>=0.1.0 <=0.2.0), nimiq-accounts (>=0.1.0 <=0.2.0) +17 more potentially affected by CVE-2026-40092 via nimiq-keys (>=0.1.0 <=0.2.0)

nimiq-keys CARGO version =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.2.0 and more Source cves: CVE-2026-40092 Source advisory: OSV:GHSA-27W2-87XV-37C6...

@squawk/mcp (>=0.2.0 <=0.9.0) potentially affected by unknown CVE via @squawk/navaid-data (>=0.4.1 <=0.6.3)

@squawk/navaid-data NPM version =0.4.1, =0.2.0, =0.9.0 Source cves: unknown CVE Source advisory: OSV:MAL-2026-3449...

@8btc/finance-assistant-mcp (>=0.0.1 <=0.0.69), @8btc/office-assistant-mcp (>=0.0.1 <=0.0.26-beta.1) +106 more potentially affected by unknown CVE via @tanstack/router-devtools-core (>=1.120.19 <=1.167.3)

@tanstack/router-devtools-core NPM version =1.120.19, =0.0.1, =0.0.1, =0.0.1-alpha.14, =0.1.0, =0.0.4, =0.1.0, =0.2.0, =0.2.0, =1.0.0, =0.1.0, =2.0.1-alpha-20260224145405, =2.0.1-alpha.6 - @ezshare/cli =0.0.0 - @ezshare/lib =0.0.0 - @ezshare/web =0.0.0 and more Source cves: unknown CVE Source...

@alivault/pico (>=0.1.0 <=0.1.2), @argus-vrt/web (=0.1.0) +26 more potentially affected by unknown CVE via @tanstack/react-router-ssr-query (>=1.166.10 <=1.166.12)

@tanstack/react-router-ssr-query NPM version =1.166.10, =0.1.0, =0.0.4, =1.0.0, =0.1.0, =0.2.4, =0.0.1, =0.1.0-alpha.1, =0.0.1, =0.0.8 - better-github =0.0.1 and more Source cves: unknown CVE Source advisory: OSV:MAL-2026-3467...

ai.spice:spiceai (=0.6.0), cn.isqing.icloud:icloud-common-utils (>=4.0.3-M1 <=4.0.3.1) +362 more potentially affected by CVE-2026-44248 via io.netty:netty-codec-mqtt (>=4.2.0.Alpha1 <=4.2.12.Final)

io.netty:netty-codec-mqtt MAVEN version =4.2.0.Alpha1, =4.0.3-M1, =1.21.9, =3.4.7, =25.4.1, =26.2.1, =7.9.0, =5.1.0, =5.1.0, =6.80, =0.2.2, =0.2.4 and more Source cves: CVE-2026-44248 Source advisory: OSV:GHSA-JFG9-48MV-9QGX...

@3onedata/alsatian (>=0.1.8-fix.3 <=0.1.8-fix.5), @abyedev/hono-dotenv (=1.0.0) +526 more potentially affected by CVE-2026-44456 via hono (>=0.5.10 <=4.12.15)

hono NPM version =0.5.10, =0.1.8-fix.3, =5.0.0, =0.2.0, =0.2.0, =0.4.0, =0.2.0, =0.1.4, =2026.4.4, =1.0.2, =0.1.1, =0.0.1, =0.0.2-a, =0.1.22, =1.1.1, =1.3.0 and more Source cves: CVE-2026-44456 Source advisory: OSV:GHSA-9VQF-7F2P-GF9V...

ldap3_cli (>=0.3.1 <=0.6.1), ldap3_client (>=0.1.0 <=0.6.1) potentially affected by unknown CVE via ldap3_proto (>=0.2.3 <=0.6.1)

ldap3proto CARGO version =0.2.3, =0.3.1, =0.1.0, =0.6.1 Source cves: unknown CVE Source advisory: OSV:GHSA-QCXQ-75WR-5CM8...

ae.teletronics.nlp:entityextraction (=1.3), ai.aletyx.kogito:aletyx-kogito-ai-addons-quarkus-adhoc-subprocess (>=0.1.0 <=0.2.0) +1695 more potentially affected by CVE-2026-42027 via org.apache.opennlp:opennlp-tools (>=1.5.2-incubating <=2.5.8)

org.apache.opennlp:opennlp-tools MAVEN version =1.5.2-incubating, =0.1.0, =0.1.0, =2.12.1, =2.12.1, =19.9.0, =19.9.1, =19.9.1, =19.9.0, =19.9.0, =19.9.0, =19.9.0, =26.3.1 and more Source cves: CVE-2026-42027 Source advisory: OSV:GHSA-CX4M-2P55-RW7J...

@kyoji2/intercom-cli (>=0.1.0 <=0.1.6), @types/intercom-client (=3.0.0) +2 more potentially affected by unknown CVE via intercom-client (>=7.0.1 <=7.0.3)

intercom-client NPM version =7.0.1, =0.1.0, =3.0.14, =3.0.31 Source cves: unknown CVE Source advisory: OSV:MAL-2026-3204...

aana (>=0.2.1 <=0.2.2.2), adaptive-kmpc-py (>=0.1.0 <=0.1.1) +1012 more potentially affected by unknown CVE via lightning (>=2.0.0 <=2.6.1)

lightning PYPI version =2.0.0, =0.2.1, =0.1.0, =2.0.0, =1.3.0, =0.2.0, =2025.4.0, =0.0.0, =0.1.11, =1.9.0, =1.9.0, =0.1.16, =0.0.39, =0.4.38 and more Source cves: unknown CVE Source advisory: OSV:MAL-2026-3201...

01os (=0.0.14), 0xpwn (>=0.1.0 <=0.1.1) +2658 more potentially affected by CVE-2026-42271 via litellm (>=1.74.3 <=1.83.4)

litellm PYPI version =1.74.3, =0.1.0, =0.1.0, =0.3.0, =0.1.3, =0.0.4, =0.1.0, =0.0.1a0, =0.3.5, =0.2.2, =0.2.1, =0.2.0, =0.6.1 - acatome-mcp =0.2.1 and more Source cves: CVE-2026-42271 Source advisory: OSV:GHSA-V4P8-MG3P-G94G...