MAL-2026-1735

See a problem?

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/fe-lib-sequences/MAL-2026-1735.json

JSON Data

https://api.osv.dev/v1/vulns/MAL-2026-1735

Published

2026-03-18T12:51:10Z

Modified

2026-03-23T05:42:30.303591Z

Summary

Malicious code in fe-lib-sequences (npm)

Details

-= Per source details. Do not edit below this line.=-

Source: amazon-inspector (970540348da1e5e01403124dd9005ee94f780965908149e1b563bb9667be89f7)

The package fe-lib-sequences was found to contain malicious code.

Database specific

{
    "malicious-packages-origins": [
        {
            "id": "RLMA-2026-01314",
            "sha256": "161fa2c597fb9ebaaad5e94d9d24351e986eacc8d1afad64e51387371ba72e0b",
            "import_time": "2026-03-19T12:18:51.990057369Z",
            "source": "reversing-labs",
            "modified_time": "2026-03-18T12:51:10Z",
            "versions": [
                "99.99.9",
                "99.99.99",
                "999.999.999"
            ]
        },
        {
            "import_time": "2026-03-23T05:13:59.423933564Z",
            "sha256": "970540348da1e5e01403124dd9005ee94f780965908149e1b563bb9667be89f7",
            "source": "amazon-inspector",
            "modified_time": "2026-03-23T05:11:41Z",
            "versions": [
                "99.99.9",
                "99.99.99",
                "999.999.999"
            ]
        }
    ]
}

References

Credits

- Amazon Inspector - FINDER
- - actran@amazon.com
- ReversingLabs - FINDER
- - https://www.reversinglabs.com

Affected packages

npm / fe-lib-sequences

Package

Name: fe-lib-sequences; View open source insights on deps.dev
Purl: pkg:npm/fe-lib-sequences

Affected ranges

Affected versions

99.*

99.99.9

99.99.99

999.*

999.999.999

Database specific

source

"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/fe-lib-sequences/MAL-2026-1735.json"