{"id":"MAL-2026-1639","summary":"Malicious code in @uc-platform/advertisement-service-client (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: amazon-inspector (b168c7f137b260fe9d6fa7c0962aa3ab273f66f1f5bfabe7f0daadeb79ef7323)\nThe package @uc-platform/advertisement-service-client was found to contain malicious code.\n","modified":"2026-03-23T05:39:58.176360Z","published":"2026-03-18T12:34:56Z","database_specific":{"malicious-packages-origins":[{"sha256":"cc56737f905dd732606f8eac6962db25c87eab2b507efffe60b3ed03a7874d58","modified_time":"2026-03-18T12:34:56Z","source":"reversing-labs","import_time":"2026-03-19T12:18:29.705385409Z","id":"RLMA-2026-01070","versions":["99.99.9"]},{"sha256":"b168c7f137b260fe9d6fa7c0962aa3ab273f66f1f5bfabe7f0daadeb79ef7323","modified_time":"2026-03-23T05:11:41Z","source":"amazon-inspector","import_time":"2026-03-23T05:14:20.070574919Z","versions":["99.99.9"]}]},"affected":[{"package":{"name":"@uc-platform/advertisement-service-client","ecosystem":"npm","purl":"pkg:npm/%40uc-platform/advertisement-service-client"},"versions":["99.99.9"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/@uc-platform/advertisement-service-client/MAL-2026-1639.json"}}],"schema_version":"1.7.5","credits":[{"name":"Amazon Inspector","contact":["actran@amazon.com"],"type":"FINDER"},{"name":"ReversingLabs","contact":["https://www.reversinglabs.com"],"type":"FINDER"}]}