@asyncapi/cli (>=2.5.0 <=4.1.1), @powerlines/plugin-asyncapi (>=0.1.0 <=0.1.558) +1 more potentially affected by unknown CVE via @asyncapi/generator (>=2.11.0 <=2.8.3)

@asyncapi/generator NPM version =2.11.0, =2.5.0, =0.1.0, =0.1.558 - nestjs-asyncapi =2.0.1 Source cves: unknown CVE Source advisory: SNYK:JS-ASYNCAPIGENERATOR-14103255...

@asyncapi/cli (>=2.5.0 <=4.1.1), @asyncapi/generator (>=2.1.3 <=2.11.0) +3 more potentially affected by unknown CVE via @asyncapi/nunjucks-filters (=2.1.0)

@asyncapi/nunjucks-filters NPM version =2.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on @asyncapi/nunjucks-filters and may be impacted: - @asyncapi/cli =2.5.0, =2.1.3, =2.1.4, =0.1.0, =0.1.469 - nestjs-asyncapi =2.0.1 Source cves: unknown CVE...

EUVD-2025-198634

Malicious code in @asyncapi/generator-react-sdk npm...

Malicious code in @asyncapi/generator-react-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7b0dadd48783af136a9dcf3f65cf9f24675841f02c7d1a5b6dc60709b392bf98 The package @asyncapi/generator-react-sdk was found to contain malicious code. Source: ghsa-malware...

MAL-2025-190637 Malicious code in @asyncapi/generator-react-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7b0dadd48783af136a9dcf3f65cf9f24675841f02c7d1a5b6dc60709b392bf98 The package @asyncapi/generator-react-sdk was found to contain malicious code. Source: ghsa-malware...

@asyncapi/cli (>=2.5.0 <=4.1.1), @powerlines/plugin-asyncapi (>=0.1.0 <=0.1.469) +1 more potentially affected by unknown CVE via @asyncapi/generator (>=2.11.0 <=2.8.3)

@asyncapi/generator NPM version =2.11.0, =2.5.0, =0.1.0, =0.1.469 - nestjs-asyncapi =2.0.1 Source cves: unknown CVE Source advisory: OSV:MAL-2025-190636...