{"id":"MAL-2025-4782","summary":"Malicious code in @react-native-aria/interactions (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: google-open-source-security (0ebff3f8886f25a3adc58387ba0a97c3768c3c88e8f4c09d8562b92b0fdbbd7f)\nReact Native ARIA and @gluestack-ui/utils had unauthorized new versions published\nthat contained malicious code via a public access token compromise.\n\nThe malicious code connects to a command and control server and allows\nremote access, including arbitrary command execution.\n","modified":"2025-06-10T06:36:28Z","published":"2025-06-10T06:36:28Z","database_specific":{"malicious-packages-origins":[{"source":"google-open-source-security","modified_time":"2025-06-10T06:36:28Z","import_time":"2025-06-10T06:38:15.205007Z","sha256":"0ebff3f8886f25a3adc58387ba0a97c3768c3c88e8f4c09d8562b92b0fdbbd7f","versions":["0.2.17"]}]},"references":[{"type":"REPORT","url":"https://github.com/gluestack/gluestack-ui/issues/2894"},{"type":"ARTICLE","url":"https://www.aikido.dev/blog/supply-chain-attack-on-react-native-aria-ecosystem"}],"affected":[{"package":{"name":"@react-native-aria/interactions","ecosystem":"npm","purl":"pkg:npm/%40react-native-aria/interactions"},"versions":["0.2.17"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/@react-native-aria/interactions/MAL-2025-4782.json"}}],"schema_version":"1.7.3"}