{"id":"MAL-2026-1756","summary":"Malicious code in js-to-solve (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: amazon-inspector (5bfe1e90f37563cf60de25fd9a1b84330e34f96b0636d0fd5a4a323c7eb52890)\nThe package js-to-solve was found to contain malicious code.\n","modified":"2026-03-23T05:34:31.187146Z","published":"2026-03-18T12:55:50Z","database_specific":{"malicious-packages-origins":[{"source":"reversing-labs","modified_time":"2026-03-18T12:55:50Z","import_time":"2026-03-19T12:18:56.314962488Z","id":"RLMA-2026-01364","versions":["1.0.0"],"sha256":"640beaed273f6d0aa9b7837cbc375bdd7008137877bfebc97b85e0a33be6e3d5"},{"source":"amazon-inspector","modified_time":"2026-03-23T05:11:41Z","import_time":"2026-03-23T05:14:40.18838022Z","versions":["1.0.0"],"sha256":"5bfe1e90f37563cf60de25fd9a1b84330e34f96b0636d0fd5a4a323c7eb52890"}]},"affected":[{"package":{"name":"js-to-solve","ecosystem":"npm","purl":"pkg:npm/js-to-solve"},"versions":["1.0.0"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/js-to-solve/MAL-2026-1756.json"}}],"schema_version":"1.7.5","credits":[{"name":"Amazon Inspector","contact":["actran@amazon.com"],"type":"FINDER"},{"name":"ReversingLabs","contact":["https://www.reversinglabs.com"],"type":"FINDER"}]}