MAL-2026-1866

See a problem?

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/testctfproject3/MAL-2026-1866.json

JSON Data

https://api.osv.dev/v1/vulns/MAL-2026-1866

Published

2026-03-18T13:12:41Z

Modified

2026-03-23T05:46:25.925074Z

Summary

Malicious code in testctfproject3 (npm)

Details

-= Per source details. Do not edit below this line.=-

Source: amazon-inspector (ac5d94cd8502eef9cfde3cf2cf891a6188172c6df1a8bcc20806c7ba15b7855d)

The package testctfproject3 was found to contain malicious code.

Database specific

{
    "malicious-packages-origins": [
        {
            "versions": [
                "0.30.1"
            ],
            "import_time": "2026-03-19T12:19:13.656203068Z",
            "modified_time": "2026-03-18T13:12:41Z",
            "id": "RLMA-2026-01620",
            "sha256": "f7120d5f44f56b959eb3bc39c0848b43943a66fae46fbd5236282b5d757699af",
            "source": "reversing-labs"
        },
        {
            "versions": [
                "0.30.1"
            ],
            "import_time": "2026-03-23T05:14:35.595069274Z",
            "modified_time": "2026-03-23T05:11:41Z",
            "sha256": "ac5d94cd8502eef9cfde3cf2cf891a6188172c6df1a8bcc20806c7ba15b7855d",
            "source": "amazon-inspector"
        }
    ]
}

References

Credits

- Amazon Inspector - FINDER
- - actran@amazon.com
- ReversingLabs - FINDER
- - https://www.reversinglabs.com

Affected packages

npm / testctfproject3

Package

Name: testctfproject3; View open source insights on deps.dev
Purl: pkg:npm/testctfproject3

Affected ranges

Affected versions

0.*

0.30.1

Database specific

source

"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/testctfproject3/MAL-2026-1866.json"