{"id":"MAL-2026-1741","summary":"Malicious code in frontastic (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: amazon-inspector (e3a8ba3c5ef6ed185f82d46c61b62d6f2b4452c58a9c3705c117feac6806ceae)\nThe package frontastic was found to contain malicious code.\n","modified":"2026-03-23T05:42:39.090333Z","published":"2026-03-18T12:52:10Z","database_specific":{"malicious-packages-origins":[{"sha256":"97332806e1768b31d9dcbcbbb3238d2db97bdbf38360662227a589e3414a5482","import_time":"2026-03-19T12:18:53.425522149Z","modified_time":"2026-03-18T12:52:10Z","versions":["90.9.0"],"source":"reversing-labs","id":"RLMA-2026-01330"},{"sha256":"e3a8ba3c5ef6ed185f82d46c61b62d6f2b4452c58a9c3705c117feac6806ceae","import_time":"2026-03-23T05:14:37.421552523Z","versions":["90.9.0"],"source":"amazon-inspector","modified_time":"2026-03-23T05:11:41Z"}]},"affected":[{"package":{"name":"frontastic","ecosystem":"npm","purl":"pkg:npm/frontastic"},"versions":["90.9.0"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/frontastic/MAL-2026-1741.json"}}],"schema_version":"1.7.5","credits":[{"name":"Amazon Inspector","contact":["actran@amazon.com"],"type":"FINDER"},{"name":"ReversingLabs","contact":["https://www.reversinglabs.com"],"type":"FINDER"}]}