2 matches found
MAL-2026-2074 Malicious code in @emilgroup/discount-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7d109da0bd9a556f8a45c44748a2ab182a550fb56fddcfe61b382a543801b94a The package @emilgroup/discount-sdk was found to contain malicious code. Source: ghsa-malware...
Embedded Malicious Code
Overview @emilgroup/discount-sdk is an A new version of the package Affected versions of this package are vulnerable to Embedded Malicious Code. The publishing pipeline of this package was compromised as the result of Trivy's GitHub Actions compromise and a malicious versions were released on NPM...