{"id":"MAL-2026-1767","summary":"Malicious code in kmnb (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: amazon-inspector (403b1d663c5993d383034361edcd6d530aa6948d8cf17584e6d7a57917538a36)\nThe package kmnb was found to contain malicious code.\n","modified":"2026-03-23T05:43:56.139570Z","published":"2026-03-18T12:56:55Z","database_specific":{"malicious-packages-origins":[{"modified_time":"2026-03-18T12:56:55Z","import_time":"2026-03-19T12:18:58.185495736Z","id":"RLMA-2026-01394","versions":["1.0.0"],"sha256":"287d509082247e576127664b9761a220311b0147f37a351695efb31292d7da91","source":"reversing-labs"},{"modified_time":"2026-03-23T05:11:41Z","import_time":"2026-03-23T05:14:15.838395069Z","sha256":"403b1d663c5993d383034361edcd6d530aa6948d8cf17584e6d7a57917538a36","versions":["1.0.0"],"source":"amazon-inspector"}]},"affected":[{"package":{"name":"kmnb","ecosystem":"npm","purl":"pkg:npm/kmnb"},"versions":["1.0.0"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/kmnb/MAL-2026-1767.json"}}],"schema_version":"1.7.5","credits":[{"name":"Amazon Inspector","contact":["actran@amazon.com"],"type":"FINDER"},{"name":"ReversingLabs","contact":["https://www.reversinglabs.com"],"type":"FINDER"}]}