{"id":"MAL-2026-1425","summary":"Malicious code in @3stripes/auth (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: amazon-inspector (152509a4bd82adf6364c22476faa63746b5ddc6649dd64a7fdf96ff5e67ebc13)\nThe package @3stripes/auth was found to contain malicious code.\n\n## Source: ossf-package-analysis (6dfef2aa5b1531e49858972a00975d216023431edb51a77bfb48daff095f6b58)\nThe OpenSSF Package Analysis project identified '@3stripes/auth' @ 999.0.2 (npm) as malicious.\n\nIt is considered malicious because:\n\n- The package communicates with a domain associated with malicious activity.\n","modified":"2026-03-23T05:36:28.014233Z","published":"2026-03-15T05:45:45Z","database_specific":{"malicious-packages-origins":[{"modified_time":"2026-03-15T05:45:45Z","versions":["999.0.2"],"source":"ossf-package-analysis","sha256":"6dfef2aa5b1531e49858972a00975d216023431edb51a77bfb48daff095f6b58","import_time":"2026-03-15T05:56:20.962865244Z"},{"modified_time":"2026-03-23T05:11:41Z","versions":["999.0.2"],"source":"amazon-inspector","sha256":"152509a4bd82adf6364c22476faa63746b5ddc6649dd64a7fdf96ff5e67ebc13","import_time":"2026-03-23T05:14:08.409373092Z"}]},"affected":[{"package":{"name":"@3stripes/auth","ecosystem":"npm","purl":"pkg:npm/%403stripes/auth"},"versions":["999.0.2"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/@3stripes/auth/MAL-2026-1425.json"}}],"schema_version":"1.7.5","credits":[{"name":"Amazon Inspector","contact":["actran@amazon.com"],"type":"FINDER"},{"name":"OpenSSF: Package Analysis","contact":["https://github.com/ossf/package-analysis","https://openssf.slack.com/channels/package_analysis"],"type":"FINDER"}]}