MAL-2025-41598

See a problem?

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/redux-saga-help/MAL-2025-41598.json

JSON Data

https://api.osv.dev/v1/vulns/MAL-2025-41598

Aliases

SNYK-JS-REDUXSAGAHELP-13561337

Published

2025-08-28T07:38:17Z

Modified

2025-12-02T10:14:46.645768Z

Summary

Malicious code in redux-saga-help (npm)

Details

-= Per source details. Do not edit below this line.=-

Database specific

{
    "malicious-packages-origins": [
        {
            "modified_time": "2025-08-28T07:38:17Z",
            "source": "reversing-labs",
            "import_time": "2025-08-29T06:42:34.406707552Z",
            "id": "RLMA-2025-04665",
            "versions": [
                "10.3.13"
            ],
            "sha256": "0a07e0d010bb5108a2a1a8191be2b28ef0438b504390032bb4d65812229bb74a"
        },
        {
            "modified_time": "2025-12-01T13:23:09Z",
            "source": "reversing-labs",
            "import_time": "2025-12-02T09:10:11.342011121Z",
            "id": "RLUA-2025-05935",
            "versions": [
                "10.3.0"
            ],
            "sha256": "92a83ab0e957472a1047fbac65a4f31378808eb886275635d104acdc362a7e0e"
        }
    ]
}

References

Credits

- Amazon Inspector - FINDER
- - actran@amazon.com
- ReversingLabs - FINDER
- - https://www.reversinglabs.com

Affected packages

npm / redux-saga-help

Package

Name: redux-saga-help; View open source insights on deps.dev
Purl: pkg:npm/redux-saga-help

Affected ranges

Affected versions

10.*

10.3.0

10.3.13

Database specific

source

"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/redux-saga-help/MAL-2025-41598.json"