Malicious code in mistral-workflows-plugins-mistralai (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 012c4d9df9467f9847a67be15a746ea186f36d3310d278ca9409d531f5026e12 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

GHSA-JGG6-4RPR-WFH7 Broken dropper in @mistralai/mistralai, @mistralai/mistralai-azure, @mistralai/mistralai-gcp

Mistral npm @mistralai/mistralai, @mistralai/mistralai-azure, @mistralai/mistralai-gcp were compromised by a supply chain attack related to the TanStack security incident. An automated worm associated with the attack led to compromised npm package versions being published. Current investigation...

@blinkk/root-cms (>=2.0.0 <=2.4.7), @cravery/core (=0.0.2) +8 more potentially affected by unknown CVE via @mistralai/mistralai-gcp (=1.7.0)

@mistralai/mistralai-gcp NPM version =1.7.0 is affected by a known vulnerability. The following packages have a transitive dependency on @mistralai/mistralai-gcp and may be impacted: - @blinkk/root-cms =2.0.0, =0.9.7, =0.2.11, =0.0.1, =2.1.4, =0.0.694, =0.0.1, =0.8.11, =0.8.14 Source cves: unknow...

@0xwork/connect (>=0.1.0 <=0.1.7), @1mmutex/featherkit (>=1.0.0-alpha <=1.0.3-alpha) +585 more potentially affected by unknown CVE via @mistralai/mistralai (>=2.1.2 <=2.2.1)

@mistralai/mistralai NPM version =2.1.2, =0.1.0, =1.0.0-alpha, =0.0.183, =5.0.0, =0.1.6, =0.1.1, =4.0.153, =0.1.1, =0.1.0, =0.1.1-staging.0a1c61e6, =0.1.1, =0.0.2-staging.0a1c61e6, =0.1.0, =0.0.183, =1.3.0, =1.3.10-canary.40.1 and more Source cves: unknown CVE Source advisory:...

Broken dropper in @mistralai/mistralai, @mistralai/mistralai-azure, @mistralai/mistralai-gcp

Mistral npm @mistralai/mistralai, @mistralai/mistralai-azure, @mistralai/mistralai-gcp were compromised by a supply chain attack related to the TanStack security incident. An automated worm associated with the attack led to compromised npm package versions being published. Current investigation...

GHSA-WX9M-WX4F-4CMG Malicious dropper in mistralai 2.4.6 PyPI package

The mistralai PyPI package version 2.4.6 contains a malicious dropper that executes on import on Linux. No v2.4.6 tag, commit, or release workflow run exists in this repository, the legitimate latest version before the upload was 2.4.5, and the upload bypassed this repository's normal release...

Malicious dropper in mistralai 2.4.6 PyPI package

The mistralai PyPI package version 2.4.6 contains a malicious dropper that executes on import on Linux. No v2.4.6 tag, commit, or release workflow run exists in this repository, the legitimate latest version before the upload was 2.4.5, and the upload bypassed this repository's normal release...

a2cli (>=0.1.0 <=0.2.1), a2py (>=0.2.1 <=0.2.3) +742 more potentially affected by unknown CVE via mistralai (>=2.0.0 <=2.4.5)

mistralai PYPI version =2.0.0, =0.1.0, =0.2.1, =0.1.0, =0.1.0, =0.1.4, =0.1.0, =0.0.1, =0.1.36, =0.1.0, =0.1.0, =0.0.1, =0.1.2 - agentfactory-mcp-server =0.1.0 and more Source cves: unknown CVE Source advisory: OSV:GHSA-WX9M-WX4F-4CMG...

MAL-2026-3608 Malicious code in mistralai (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: google-open-source-security 5e1924464368f0c5816ee84e000cc47017f44045140feafbbc9e685d847ed5a5 This package was compromised as part of the "Mini Shai-Hulud is back" worm by the TeamPCP threat actor. The package will steal credentials...

a2cli (>=0.1.0 <=0.2.1), a2py (>=0.2.1 <=0.2.3) +742 more potentially affected by unknown CVE via mistralai (>=2.0.0 <=2.4.5)

mistralai PYPI version =2.0.0, =0.1.0, =0.2.1, =0.1.0, =0.1.0, =0.1.4, =0.1.0, =0.0.1, =0.1.36, =0.1.0, =0.1.0, =0.0.1, =0.1.2 - agentfactory-mcp-server =0.1.0 and more Source cves: unknown CVE Source advisory: OSV:MAL-2026-3608...

Malicious code in mistralai (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: google-open-source-security 5e1924464368f0c5816ee84e000cc47017f44045140feafbbc9e685d847ed5a5 This package was compromised as part of the "Mini Shai-Hulud is back" worm by the TeamPCP threat actor. The package will steal credentials...

@blinkk/root-cms (>=2.0.0 <=2.4.7), @cravery/core (=0.0.2) +8 more potentially affected by unknown CVE via @mistralai/mistralai-gcp (=1.7.0)

@mistralai/mistralai-gcp NPM version =1.7.0 is affected by a known vulnerability. The following packages have a transitive dependency on @mistralai/mistralai-gcp and may be impacted: - @blinkk/root-cms =2.0.0, =0.9.7, =0.2.11, =0.0.1, =2.1.4, =0.0.694, =0.0.1, =0.8.11, =0.8.14 Source cves: unknow...

Malicious code in @mistralai/mistralai-gcp (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3dcfd7fec176cc54232767b454429a7b3e0106aebbb16f2e9bdacc57e8a20ff9 The package @mistralai/mistralai-gcp was found to contain malicious code. Source: ghsa-malware...

MAL-2026-3512 Malicious code in @mistralai/mistralai-gcp (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3dcfd7fec176cc54232767b454429a7b3e0106aebbb16f2e9bdacc57e8a20ff9 The package @mistralai/mistralai-gcp was found to contain malicious code. Source: ghsa-malware...

MAL-2026-3511 Malicious code in @mistralai/mistralai-azure (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector af58e099ab615b8869cb741b5604f6becdf1e9d1d7c5ac326f9c4065f5f590f6 The package @mistralai/mistralai-azure was found to contain malicious code. Source: ghsa-malware...

Malicious code in @mistralai/mistralai-azure (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector af58e099ab615b8869cb741b5604f6becdf1e9d1d7c5ac326f9c4065f5f590f6 The package @mistralai/mistralai-azure was found to contain malicious code. Source: ghsa-malware...

Malicious code in @mistralai/mistralai (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 23235945a2d68899f5fe2e6eafaefa0a98f2120697d41a40d26615e41aceb916 The package @mistralai/mistralai was found to contain malicious code. Source: ghsa-malware...

@0xwork/connect (>=0.1.0 <=0.1.7), @1mmutex/featherkit (>=1.0.0-alpha <=1.0.3-alpha) +585 more potentially affected by unknown CVE via @mistralai/mistralai (>=2.1.2 <=2.2.1)

@mistralai/mistralai NPM version =2.1.2, =0.1.0, =1.0.0-alpha, =0.0.183, =5.0.0, =0.1.6, =0.1.1, =4.0.153, =0.1.1, =0.1.0, =0.1.1-staging.0a1c61e6, =0.1.1, =0.0.2-staging.0a1c61e6, =0.1.0, =0.0.183, =1.3.0, =1.3.10-canary.40.1 and more Source cves: unknown CVE Source advisory: OSV:MAL-2026-3432...

MAL-2026-3432 Malicious code in @mistralai/mistralai (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 23235945a2d68899f5fe2e6eafaefa0a98f2120697d41a40d26615e41aceb916 The package @mistralai/mistralai was found to contain malicious code. Source: ghsa-malware...

@0xwork/connect (>=0.1.0 <=0.1.7), @1mmutex/featherkit (>=1.0.0-alpha <=1.0.3-alpha) +585 more potentially affected by unknown CVE via @mistralai/mistralai (>=2.1.2 <=2.2.1)

@mistralai/mistralai NPM version =2.1.2, =0.1.0, =1.0.0-alpha, =0.0.183, =5.0.0, =0.1.6, =0.1.1, =4.0.153, =0.1.1, =0.1.0, =0.1.1-staging.0a1c61e6, =0.1.1, =0.0.2-staging.0a1c61e6, =0.1.0, =0.0.183, =1.3.0, =1.3.10-canary.40.1 and more Source cves: unknown CVE Source advisory:...