@asyncapi-actions-test/trusted-publishing-test_asyncapi-cli (>=4.1.3 <=5.4.0), @asyncapi/cli (>=3.3.0 <=6.0.0) +3 more potentially affected by unknown CVE via @asyncapi/problem (=1.0.0)

@asyncapi/problem NPM version =1.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on @asyncapi/problem and may be impacted: - @asyncapi-actions-test/trusted-publishing-testasyncapi-cli =4.1.3, =3.3.0, =0.16.0, =1.4.14, =1.4.48 -...

EUVD-2025-198676

Malicious code in @asyncapi/problem npm...

MAL-2025-190664 Malicious code in @asyncapi/problem (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 257141d8551fbc781c4df287d30e9a7e795f6759382d0ca3c20f7c46411614ec The package @asyncapi/problem was found to contain malicious code. Source: ghsa-malware...