{"id":"MAL-2025-6020","summary":"Malicious code in is (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: google-open-source-security (a1baf574e6278b3c20c30fdd7875414ed04c1a695eb226fd43328004c6916873)\n\"is\" had unauthorized new versions published that contained malicious\nobfuscated code via account compromise.\n","modified":"2025-07-22T07:14:14Z","published":"2025-07-22T07:14:14Z","database_specific":{"malicious-packages-origins":[{"source":"google-open-source-security","modified_time":"2025-07-22T07:14:14Z","import_time":"2025-07-22T07:14:58.657738Z","versions":["3.3.1","5.0.0"],"sha256":"a1baf574e6278b3c20c30fdd7875414ed04c1a695eb226fd43328004c6916873"}]},"references":[{"type":"FIX","url":"https://github.com/enricomarino/is/commit/0fe137a5946e4ecb0e649bd7dea48d5415a242fc"}],"affected":[{"package":{"name":"is","ecosystem":"npm","purl":"pkg:npm/is"},"versions":["3.3.1","5.0.0"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/is/MAL-2025-6020.json"}}],"schema_version":"1.7.3"}