{"id":"MAL-2026-1634","summary":"Malicious code in @panopto/api-core (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: amazon-inspector (02e9e606e2aef11de752a18ad63f5772f485bb0fd40f66cc61b2e0f9a5ffe26f)\nThe package @panopto/api-core was found to contain malicious code.\n","modified":"2026-03-23T05:38:53.721091Z","published":"2026-03-18T12:30:22Z","database_specific":{"malicious-packages-origins":[{"import_time":"2026-03-19T12:18:27.802875401Z","id":"RLMA-2026-01044","sha256":"351200d2e2dc90d278806c40addc082efd2c8080209e09ded91c528e36fc2850","versions":["99.98.5","99.98.6"],"modified_time":"2026-03-18T12:30:22Z","source":"reversing-labs"},{"import_time":"2026-03-23T05:14:41.406195178Z","sha256":"02e9e606e2aef11de752a18ad63f5772f485bb0fd40f66cc61b2e0f9a5ffe26f","versions":["99.98.5","99.98.6"],"modified_time":"2026-03-23T05:11:41Z","source":"amazon-inspector"}]},"affected":[{"package":{"name":"@panopto/api-core","ecosystem":"npm","purl":"pkg:npm/%40panopto/api-core"},"versions":["99.98.5","99.98.6"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/@panopto/api-core/MAL-2026-1634.json"}}],"schema_version":"1.7.5","credits":[{"name":"Amazon Inspector","contact":["actran@amazon.com"],"type":"FINDER"},{"name":"ReversingLabs","contact":["https://www.reversinglabs.com"],"type":"FINDER"}]}