{"id":"MAL-2026-2726","summary":"Malicious code in agent-scheduler (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: amazon-inspector (8ef725b4f3725bfa9deeef4b7152653c4156fb0feb92d045501c86968bc17525)\nThe package agent-scheduler was found to contain malicious code.\n","modified":"2026-04-23T21:12:44.350801Z","published":"2026-04-16T09:43:13Z","database_specific":{"malicious-packages-origins":[{"versions":["0.0.1"],"sha256":"c045596adec27c992f034fe68b6bcfcd65ab5787358da46d3e3e658107262d0f","source":"reversing-labs","id":"RLMA-2026-01882","import_time":"2026-04-16T15:38:51.841031908Z","modified_time":"2026-04-16T09:43:13Z"},{"versions":["0.0.1"],"sha256":"8ef725b4f3725bfa9deeef4b7152653c4156fb0feb92d045501c86968bc17525","source":"amazon-inspector","import_time":"2026-04-23T20:49:07.062029344Z","modified_time":"2026-04-23T20:43:56Z"}]},"affected":[{"package":{"name":"agent-scheduler","ecosystem":"npm","purl":"pkg:npm/agent-scheduler"},"versions":["0.0.1"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/agent-scheduler/MAL-2026-2726.json"}}],"schema_version":"1.7.5","credits":[{"name":"Amazon Inspector","contact":["actran@amazon.com"],"type":"FINDER"},{"name":"ReversingLabs","contact":["https://www.reversinglabs.com"],"type":"FINDER"}]}