{"id":"MAL-2026-3185","summary":"Malicious code in @saif777/codemirror5 (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: amazon-inspector (d8c90f2fd5697c867e9bb88102c93cf144662dcee32b95e0ad2a27061c867c65)\nThe package @saif777/codemirror5 was found to contain malicious code.\n\n## Source: ossf-package-analysis (05a16b6c187f8c3c5ab4c2c62627e75d9f8d14d28d265854e57ba1cb33bb7f3b)\nThe OpenSSF Package Analysis project identified '@saif777/codemirror5' @ 7.66.5 (npm) as malicious.\n\nIt is considered malicious because:\n\n- The package communicates with a domain associated with malicious activity.\n","modified":"2026-04-30T23:08:31.394098Z","published":"2026-04-29T18:36:33Z","database_specific":{"malicious-packages-origins":[{"versions":["7.66.5"],"modified_time":"2026-04-29T18:36:33Z","import_time":"2026-04-29T23:23:38.182574258Z","sha256":"05a16b6c187f8c3c5ab4c2c62627e75d9f8d14d28d265854e57ba1cb33bb7f3b","source":"ossf-package-analysis"},{"versions":["7.66.5"],"modified_time":"2026-04-30T21:59:18Z","import_time":"2026-04-30T22:23:10.172971864Z","sha256":"d8c90f2fd5697c867e9bb88102c93cf144662dcee32b95e0ad2a27061c867c65","source":"amazon-inspector"}]},"affected":[{"package":{"name":"@saif777/codemirror5","ecosystem":"npm","purl":"pkg:npm/%40saif777/codemirror5"},"versions":["7.66.5"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/@saif777/codemirror5/MAL-2026-3185.json"}}],"schema_version":"1.7.5","credits":[{"name":"Amazon Inspector","contact":["actran@amazon.com"],"type":"FINDER"},{"name":"OpenSSF: Package Analysis","contact":["https://github.com/ossf/package-analysis","https://openssf.slack.com/channels/package_analysis"],"type":"FINDER"}]}