{"id":"MAL-2026-1880","summary":"Malicious code in zero-develop-component-library (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: amazon-inspector (b25ede928413a72b6cfc25c807bc6f5902bd1b9d00f1d3d83624e237da613fb1)\nThe package zero-develop-component-library was found to contain malicious code.\n","modified":"2026-03-23T05:35:27.085527Z","published":"2026-03-18T13:17:24Z","database_specific":{"malicious-packages-origins":[{"sha256":"fb5276c34ca4f94e2bd07e6b813068a6c0b9e379439d246159f5246cb98a2c7e","versions":["99.99.2"],"source":"reversing-labs","modified_time":"2026-03-18T13:17:24Z","id":"RLMA-2026-01671","import_time":"2026-03-19T12:19:17.611457482Z"},{"sha256":"b25ede928413a72b6cfc25c807bc6f5902bd1b9d00f1d3d83624e237da613fb1","source":"amazon-inspector","versions":["99.99.2"],"modified_time":"2026-03-23T05:11:41Z","import_time":"2026-03-23T05:14:20.552660907Z"}]},"affected":[{"package":{"name":"zero-develop-component-library","ecosystem":"npm","purl":"pkg:npm/zero-develop-component-library"},"versions":["99.99.2"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/zero-develop-component-library/MAL-2026-1880.json"}}],"schema_version":"1.7.5","credits":[{"name":"Amazon Inspector","contact":["actran@amazon.com"],"type":"FINDER"},{"name":"ReversingLabs","contact":["https://www.reversinglabs.com"],"type":"FINDER"}]}