114 matches found
EUVD-2025-199479
Malicious code in @oku-ui/menu npm...
Malicious code in @oku-ui/toggle (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a0d0819bf4913c5aabf31547b239ee5407c6e581d71ef7d041451c7f162314c1 The package @oku-ui/toggle was found to contain malicious code. Source: google-open-source-security...
@oku-ui/accordion (>=0.5.0 <=0.6.1), @oku-ui/alert-dialog (>=0.0.1 <=0.6.1) +13 more potentially affected by unknown CVE via @oku-ui/presence (=0.6.1)
@oku-ui/presence NPM version =0.6.1 is affected by a known vulnerability. The following packages have a transitive dependency on @oku-ui/presence and may be impacted: - @oku-ui/accordion =0.5.0, =0.0.1, =0.4.0, =0.2.3, =0.4.0, =0.4.0, =0.6.0, =0.4.0, =0.0.1, =0.4.0, =0.0.1, =0.4.0, =0.4.0, =0.4.0...
EUVD-2025-199468
Malicious code in @oku-ui/roving-focus npm...
@oku-ui/accordion (>=0.5.0 <=0.6.1), @oku-ui/alert-dialog (>=0.0.1 <=0.6.1) +31 more potentially affected by unknown CVE via @oku-ui/primitive (>=0.0.1 <=0.6.1)
@oku-ui/primitive NPM version =0.0.1, =0.5.0, =0.0.1, =0.2.0, =0.1.0, =0.1.0, =0.1.0, =0.2.0, =0.4.0, =0.4.0, =0.4.0, =0.4.0, =0.4.0, =0.1.0, =0.6.0, =0.4.0, =0.6.1 and more Source cves: unknown CVE Source advisory: OSV:MAL-2025-191266...
@oku-ui/primitives (>=0.0.1 <=0.6.1) potentially affected by unknown CVE via @oku-ui/aspect-ratio (=0.6.1)
@oku-ui/aspect-ratio NPM version =0.6.1 is affected by a known vulnerability. The following packages have a transitive dependency on @oku-ui/aspect-ratio and may be impacted: - @oku-ui/primitives =0.0.1, =0.6.1 Source cves: unknown CVE Source advisory: OSV:MAL-2025-191250...
@oku-ui/alert-dialog (>=0.0.1 <=0.6.1), @oku-ui/dialog (>=0.4.0 <=0.6.1) +6 more potentially affected by unknown CVE via @oku-ui/portal (=0.6.1)
@oku-ui/portal NPM version =0.6.1 is affected by a known vulnerability. The following packages have a transitive dependency on @oku-ui/portal and may be impacted: - @oku-ui/alert-dialog =0.0.1, =0.4.0, =0.4.0, =0.6.0, =0.4.0, =0.4.0, =0.4.0-alpha.6, =0.4.0, =0.6.1 Source cves: unknown CVE Source...
EUVD-2025-199474
Malicious code in @oku-ui/presence npm...
Malicious code in @oku-ui/presence (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9ccfe3cd227dfd52c2a7bb6d2c15fc511a5d1baab2eb3378960905005e421b9a The package @oku-ui/presence was found to contain malicious code. Source: google-open-source-security...
Malicious code in @oku-ui/avatar (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 23d026f94dcbe031cd4e8c72102d71358e1909bb7b14a95645e7fd46d955e0c9 The package @oku-ui/avatar was found to contain malicious code. Source: google-open-source-security...
Malicious code in @oku-ui/scroll-area (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector feec27c9dd0a9e2e311e7acfd63e100ca5a09fe90c7e8aeb9237e7722ea49a77 The package @oku-ui/scroll-area was found to contain malicious code. Source: google-open-source-security...
Malicious code in @oku-ui/popper (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c757bdb980fe7035718ca706928b603973b5cc84bc5d18fbe3ab776cbd44e149 The package @oku-ui/popper was found to contain malicious code. Source: google-open-source-security...
@oku-ui/primitives (>=0.4.0 <=0.6.1) potentially affected by unknown CVE via @oku-ui/slider (=0.6.1)
@oku-ui/slider NPM version =0.6.1 is affected by a known vulnerability. The following packages have a transitive dependency on @oku-ui/slider and may be impacted: - @oku-ui/primitives =0.4.0, =0.6.1 Source cves: unknown CVE Source advisory: OSV:MAL-2025-191274...
@oku-ui/primitives (>=0.4.0 <=0.6.1) potentially affected by unknown CVE via @oku-ui/tooltip (=0.6.1)
@oku-ui/tooltip NPM version =0.6.1 is affected by a known vulnerability. The following packages have a transitive dependency on @oku-ui/tooltip and may be impacted: - @oku-ui/primitives =0.4.0, =0.6.1 Source cves: unknown CVE Source advisory: OSV:MAL-2025-191281...
@oku-ui/primitives (>=0.5.0 <=0.6.1) potentially affected by unknown CVE via @oku-ui/scroll-area (=0.6.1)
@oku-ui/scroll-area NPM version =0.6.1 is affected by a known vulnerability. The following packages have a transitive dependency on @oku-ui/scroll-area and may be impacted: - @oku-ui/primitives =0.5.0, =0.6.1 Source cves: unknown CVE Source advisory: OSV:MAL-2025-191272...
Malicious code in @oku-ui/alert-dialog (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 824a69f83431a766f681bc72d705ff3b28ae9309898b4ad10979adca148f2276 The package @oku-ui/alert-dialog was found to contain malicious code. Source: google-open-source-security...
@oku-ui/primitives (>=0.0.1 <=0.6.1) potentially affected by unknown CVE via @oku-ui/progress (=0.6.1)
@oku-ui/progress NPM version =0.6.1 is affected by a known vulnerability. The following packages have a transitive dependency on @oku-ui/progress and may be impacted: - @oku-ui/primitives =0.0.1, =0.6.1 Source cves: unknown CVE Source advisory: OSV:MAL-2025-191268...
EUVD-2025-199460
Malicious code in @oku-ui/toggle-group npm...
EUVD-2025-199458
Malicious code in @oku-ui/tooltip npm...
MAL-2025-191255 Malicious code in @oku-ui/dialog (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 25f15df16cf4e34ba65ddc24116d624b40ec91b0a9d12bacec8f2afd6ea3bc27 The package @oku-ui/dialog was found to contain malicious code. Source: google-open-source-security...