ROOT-APP-NPM-CVE-2026-32621 CVE-2026-32621 in @rootio/apollo__gateway - Patched by Root

Root has patched CVE-2026-32621 in the @rootio/apollogateway package for Root:npm. Multiple fixed versions available...

MAL-2025-661 Malicious code in gateway-eth-ts (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b62b42384dda97a32401608b1d3852453885ac3bdcec2ecf4bc6a09299b4d8c7 Any computer that has this package installed or running should be considered...

Malicious code in lyft-gateway (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis be4613c5244b3637a1ce624461625c93050eb053918b67dfb98d8879de0e9124 The OpenSSF Package Analysis project identified 'lyft-gateway' @ 999.9.9 npm as malicious. It is considered malicious because: - The package...

MAL-2025-84 Malicious code in ebay-gateway (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3d6bb5a4bb9f4d66baa7a5b19bc2269a1f55c7a186b9b72c5c92c234e24d0b0a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-411 Malicious code in @manomano-toolbox/api-gateway (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware db95524e5bf90907d13f9109419d2a10727fd9549c599cad79231ab6359745f1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...