go-api-starter (>=0.0.0 <=1.3.0), redux-starter (>=0.0.0 <=1.1.0) potentially affected by unknown CVE via kik-starter (>=0.0.1 <=2.2.1)

kik-starter NPM version =0.0.1, =0.0.0, =0.0.0, =1.1.0 Source cves: unknown CVE Source advisory: OSV:MAL-2025-24454...

Malicious code in go-api-starter (npm)

The package go-api-starter was found to contain malicious code...

MAL-2025-21618 Malicious code in go-api-starter (npm)

The package go-api-starter was found to contain malicious code...