Malicious Package

Overview lusha-ui-components is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

MAL-2026-294 Malicious code in lusha-ui-components (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 50c1c6b65695a715c9538b69f7230b4c9f89fef68de10ad9b6e2b625f2b22f62 The package lusha-ui-components was found to contain malicious code. Source: ghsa-malware...

EUVD-2026-3065

Malicious code in lusha-ui-components npm...

Malicious Package

Overview lusha-ui-components-v2 is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this...

Malicious code in lusha-ui-components-v2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware aa9f9d0ba99666d4d11e0f3fbfc797f53cdc33def310cfb00479955631833669 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...