{"id":"MAL-2026-2703","summary":"Malicious code in @3stripes/components (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: amazon-inspector (31ba4725ff03b9b0a4645734fca9af46fbd145e147f7fb7ee0942853c425f53f)\nThe package @3stripes/components was found to contain malicious code.\n","modified":"2026-04-23T21:10:10.771998Z","published":"2026-04-16T09:28:26Z","database_specific":{"malicious-packages-origins":[{"source":"reversing-labs","id":"RLMA-2026-01841","modified_time":"2026-04-16T09:28:26Z","versions":["999.0.0","999.0.2","999.0.3"],"sha256":"e1802b435f525fc58053a5fb484836310d00485ae4cf2d49ce307cace50a249c","import_time":"2026-04-16T15:38:44.490046613Z"},{"source":"amazon-inspector","modified_time":"2026-04-23T20:43:56Z","versions":["999.0.0","999.0.2","999.0.3"],"sha256":"31ba4725ff03b9b0a4645734fca9af46fbd145e147f7fb7ee0942853c425f53f","import_time":"2026-04-23T20:49:00.974559242Z"}]},"affected":[{"package":{"name":"@3stripes/components","ecosystem":"npm","purl":"pkg:npm/%403stripes/components"},"versions":["999.0.0","999.0.2","999.0.3"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/@3stripes/components/MAL-2026-2703.json"}}],"schema_version":"1.7.5","credits":[{"name":"Amazon Inspector","contact":["actran@amazon.com"],"type":"FINDER"},{"name":"ReversingLabs","contact":["https://www.reversinglabs.com"],"type":"FINDER"}]}