worldnormal
npmMAL-2026-403
Malicious code in worldnormal (npm)
manage-root
npmMAL-2026-393
Malicious code in manage-root (npm)
private-internal-sdk
npmMAL-2026-396
Malicious code in private-internal-sdk (npm)
worldposition
npmMAL-2026-404
Malicious code in worldposition (npm)
vworldviewdir
npmMAL-2026-402
Malicious code in vworldviewdir (npm)
@mikudev/ridwan-baileys-mod
npmMAL-2026-382
Malicious code in @mikudev/ridwan-baileys-mod (npm)
@mikudev/signal
npmMAL-2026-384
Malicious code in @mikudev/signal (npm)
@mikudev/beles
npmMAL-2026-381
Malicious code in @mikudev/beles (npm)
@mikudev/ridwan-signal
npmMAL-2026-383
Malicious code in @mikudev/ridwan-signal (npm)
torbaileys
npmMAL-2026-399
Malicious code in torbaileys (npm)
tor-libsignal
npmMAL-2026-398
Malicious code in tor-libsignal (npm)
genki-analytics
npmMAL-2026-389
Malicious code in genki-analytics (npm)
charlie_charlie_kirky
npmMAL-2026-388
Malicious code in charlie_charlie_kirky (npm)
recaptcha-cors
npmMAL-2026-397
Malicious code in recaptcha-cors (npm)
n8n-nodes-zl-vietts
npmMAL-2026-394
Malicious code in n8n-nodes-zl-vietts (npm)
@diendh/n8n-nodes-tiktok-v2
npmMAL-2026-378
Malicious code in @diendh/n8n-nodes-tiktok-v2 (npm)
blocks-builder-manifest-generator
npmMAL-2026-385
Malicious code in blocks-builder-manifest-generator (npm)
natateste
npmMAL-2026-395
Malicious code in natateste (npm)
victim-package-c
npmMAL-2026-401
Malicious code in victim-package-c (npm)
victim-package-b
npmMAL-2026-400
Malicious code in victim-package-b (npm)
potdf
npmMAL-2026-377
Malicious code in potdf (npm)
coolpackage2323
PyPIMAL-2026-376
Malicious code in coolpackage2323 (PyPI)
spellcheckerpy
PyPIMAL-2026-375
Malicious code in spellcheckerpy (PyPI)
github.com/esm-dev/esm.sh
GoGHSA-2657-3c98-63jq
esm.sh has a path traversal in extractPackageTarball enables file writes from malicious packages