{"id":"MAL-2026-1587","summary":"Malicious code in @bingads-webui-cc-react/edit-primary-contact (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: amazon-inspector (d8db2de62135603996e4dfafbfd49878df32f1d35291bd473c636cef7b7303f6)\nThe package @bingads-webui-cc-react/edit-primary-contact was found to contain malicious code.\n","modified":"2026-03-23T05:37:29.516446Z","published":"2026-03-18T12:24:12Z","database_specific":{"malicious-packages-origins":[{"sha256":"fbac40c4829c02c71e225319cdce9ff513aca78fb59df4258ffcb0ff5e6a5aed","source":"reversing-labs","modified_time":"2026-03-18T12:24:12Z","id":"RLMA-2026-00968","import_time":"2026-03-19T12:18:22.186335577Z","versions":["99.9.9"]},{"versions":["99.9.9"],"source":"amazon-inspector","sha256":"d8db2de62135603996e4dfafbfd49878df32f1d35291bd473c636cef7b7303f6","modified_time":"2026-03-23T05:11:41Z","import_time":"2026-03-23T05:14:07.578775038Z"}]},"affected":[{"package":{"name":"@bingads-webui-cc-react/edit-primary-contact","ecosystem":"npm","purl":"pkg:npm/%40bingads-webui-cc-react/edit-primary-contact"},"versions":["99.9.9"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/@bingads-webui-cc-react/edit-primary-contact/MAL-2026-1587.json"}}],"schema_version":"1.7.5","credits":[{"name":"Amazon Inspector","contact":["actran@amazon.com"],"type":"FINDER"},{"name":"ReversingLabs","contact":["https://www.reversinglabs.com"],"type":"FINDER"}]}