MAL-2026-385 Malicious code in blocks-builder-manifest-generator (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30f5efa34a1c44d974502110177cb7a60daf579349ed25937e66e342f7f7c24f The package blocks-builder-manifest-generator was found to contain malicious code. Source: ghsa-malware...

EUVD-2026-3768

Malicious code in natateste npm...

EUVD-2026-3770

Malicious code in victim-package-c npm...

Malicious Package

Overview kc-fe-cli is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...

EUVD-2026-3771

Malicious code in victim-package-b npm...

MAL-2026-401 Malicious code in victim-package-c (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 184f83df9021c2d9d54bd3201652ab449b3c54a606b87c484d0a16a657005cf8 The package victim-package-c was found to contain malicious code. Source: ghsa-malware c9415f83d650ad0546aeb398d909c1b7aa8c983d9ca0c37f72e68526eaf6bb...

MAL-2026-400 Malicious code in victim-package-b (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 152e8188fd82f0ea4ee410d725bb96ab33af5767241fcefb555ef8dfaffd39bf The package victim-package-b was found to contain malicious code. Source: ghsa-malware 324aadc54f696916c968e82f4704d088384eab1ce76c08f2a3d3d0aa59fece...

EUVD-2026-3772

Malicious code in potdf npm...

Malicious code in potdf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5a65730c16a2c27ad2cc810d067426e10aa9a28fae114fe94bb6f26e54bc45bc The package potdf was found to contain malicious code. Source: ghsa-malware 9537cd4226a1c122965aec751dfcb6153489552f7e29f57dcd62274654ec136a Any...

Malicious code in mised-discordjs-selfbot-v14 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7ef4b873f610d33783310bfb03753678bb9d0d93412063a29521d960c64c2af2 The package mised-discordjs-selfbot-v14 was found to contain malicious code. Source: ghsa-malware...

Malicious code in theme-neutral (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b9701381076541b8fbe448e03eb174cb40e2fd27237bfb442f219bf94911d035 The package theme-neutral was found to contain malicious code. Source: ghsa-malware 50a19fb9e329c206942de6cdd79f346a105320f4e71d0b652b154001b1dde8e7...

EUVD-2026-3498

Malicious code in theme-neutral npm...

EUVD-2026-3499

Malicious code in sezzle npm...

MAL-2026-369 Malicious code in mw-shared-utils (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf3e97618076e4e55a66ab4e6db0bd9af5787726d301e9cd90b7884efd085977 The package mw-shared-utils was found to contain malicious code. Source: ghsa-malware fc9d8c69691da9ebbb33986c4ad9eb26e4c1209546e369313ae26ff09cc378c...

EUVD-2026-3501

Malicious code in webmd-debug npm...

Malicious code in mw-shared-utils (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf3e97618076e4e55a66ab4e6db0bd9af5787726d301e9cd90b7884efd085977 The package mw-shared-utils was found to contain malicious code. Source: ghsa-malware fc9d8c69691da9ebbb33986c4ad9eb26e4c1209546e369313ae26ff09cc378c...

Malicious code in webmd-cookie (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6cea3e633de27fc446b20af035d103f0637ac73c9c5be185697d6c00e2329656 The package webmd-cookie was found to contain malicious code. Source: ghsa-malware 7c4d61d057a9a7c2e3ba6c1c54a58091ac030eff25b877dc80a22e0a804db962 A...

EUVD-2026-3507

Malicious code in excel-to-json-test npm...

Malicious code in excel-to-json-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7c7026badcf8f0b9dc17b6d25ace35a5659488148496f385d17d4d3d31b036c9 The package excel-to-json-test was found to contain malicious code. Source: ghsa-malware...

Malicious Package

Overview gu-global-ec-uikit is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...