@nativescript-community/ui-collectionview-alignedflowlayout (>=6.0.0 <=6.0.20), @nativescript-community/ui-collectionview-swipemenu (>=6.0.0 <=6.0.20) +1 more potentially affected by unknown CVE via @nativescript-community/ui-collectionview (=6.0.20)

@nativescript-community/ui-collectionview NPM version =6.0.20 is affected by a known vulnerability. The following packages have a transitive dependency on @nativescript-community/ui-collectionview and may be impacted: - @nativescript-community/ui-collectionview-alignedflowlayout =6.0.0, =6.0.0,...

Malicious code in @nativescript-community/ui-collectionview (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 337737895f40e9bb6a3ceade1add7134f43ef138029b408eb08597176f412b34 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-47153 Malicious code in @nativescript-community/ui-collectionview (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 337737895f40e9bb6a3ceade1add7134f43ef138029b408eb08597176f412b34 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Embedded Malicious Code

Overview @nativescript-community/ui-collectionview is a package that allows you to easily add a collection view grid list view to your projects Affected versions of this package are vulnerable to Embedded Malicious Code. Compromised versions of this package contain a file called bundle.js that...