h1-cli-device-node (>=1.0.1-alpha.0 <=1.0.1-alpha.1) potentially affected by unknown CVE via h1-cli-ext-root-auth (=1.0.1-alpha.1)

h1-cli-ext-root-auth NPM version =1.0.1-alpha.1 is affected by a known vulnerability. The following packages have a transitive dependency on h1-cli-ext-root-auth and may be impacted: - h1-cli-device-node =1.0.1-alpha.0, =1.0.1-alpha.1 Source cves: unknown CVE Source advisory: OSV:MAL-2025-22080...

MAL-2025-22080 Malicious code in h1-cli-ext-root-auth (npm)

The package h1-cli-ext-root-auth was found to contain malicious code...

Malicious code in h1-cli-ext-root-auth (npm)

The package h1-cli-ext-root-auth was found to contain malicious code...