EUVD-2026-1369

Malicious code in fbfu npm...

Malicious code in const-enum (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a75bfbf64070500e046f70ab9f4422cd37764182dfa1c2d841bdbff803b4e24 The package const-enum was found to contain malicious code. Source: ghsa-malware b9e5e7ad6ed97cfa1d1a71c51090aa5350d5166494a11fa6e6c9bbdad50dfc28 Any...

EUVD-2026-1375

Malicious code in const-enum npm...

EUVD-2026-1377

Malicious code in syntax-class-properties npm...

EUVD-2026-1376

Malicious code in transform-decorators-legacy npm...

MAL-2026-105 Malicious code in syntax-class-properties (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf72c51c69dcb71762b580a0299d8e6c413cc2f20b0f9133034a98d43ce4151a The package syntax-class-properties was found to contain malicious code. Source: ghsa-malware...

EUVD-2026-1380

Malicious code in eslint-plugin-supertest npm...

EUVD-2026-1379

Malicious code in redis-cookie-ts npm...

Malicious code in redis-cookie-ts (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 509b8c9645600775859de8538bbca62aac7f273789f1b43a370c814e2a061acc The package redis-cookie-ts was found to contain malicious code. Source: ghsa-malware c3c52170c4adfaeed7862716007e61fcaa3cfc702c729b6487746c1f3184f3e...

expr-eval: expr-eval: Prototype Pollution

A prototype pollution flaw was found in expr-eval. An attacker with access to express eval interface can use JavaScript prototype-based inheritance model to achieve arbitrary code execution...

Malicious code in evm-gateway-contracts-private (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f4d7fcec6a0025a21ed0b14bdd643dc22965e7c3ccd6dee0bfa6bf3285b97aac The package evm-gateway-contracts-private was found to contain malicious code. Source: ghsa-malware...

EUVD-2026-1105

Malicious code in elastic-docs-v3-utilities npm...

EUVD-2026-1107

Malicious code in code-review-frontend npm...

MAL-2026-84 Malicious code in code-review-frontend (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8200b341d8a881e6587e455f14f0c741d36c9fd0797d02812fa84bda028571a9 The package code-review-frontend was found to contain malicious code. Source: ghsa-malware...

EUVD-2026-1106

Malicious code in x-clients-features npm...

Malicious code in okta-auth-js (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c0d2189b5df6091ef38c2619c0ed24b8814459b769da6b646901bb0d1987a440 The package okta-auth-js was found to contain malicious code. Source: ghsa-malware 65d7548ce9f766315a32892d8f9588740b8fab7cc50443598ea65e8e0ce9b2ab A...

EUVD-2026-1115

Malicious code in importmap-polyfil npm...

Malicious code in electra-web-player (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e90e20a5f518415d7ac86fad709a8ea6499445e427dab71949d06f62ace2dded The package electra-web-player was found to contain malicious code. Source: ghsa-malware...

EUVD-2026-1111

Malicious code in shopify-perf-kit npm...

MAL-2026-91 Malicious code in okta-auth-js (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c0d2189b5df6091ef38c2619c0ed24b8814459b769da6b646901bb0d1987a440 The package okta-auth-js was found to contain malicious code. Source: ghsa-malware 65d7548ce9f766315a32892d8f9588740b8fab7cc50443598ea65e8e0ce9b2ab A...