MAL-2026-2816

See a problem?
Import Source
https://github.com/ossf/malicious-packages/blob/main/osv/malicious/rubygems/monolith-twirp-pullsd-users/MAL-2026-2816.json
JSON Data
https://api.osv.dev/v1/vulns/MAL-2026-2816
Published
2026-04-16T10:28:47Z
Modified
2026-04-16T15:58:59.946338Z
Summary
Malicious code in monolith-twirp-pullsd-users (RubyGems)
Details

-= Per source details. Do not edit below this line.=-

Database specific 
{
    "malicious-packages-origins": [
        {
            "source": "reversing-labs",
            "sha256": "ab5c245ee7fddc7cd277bad6a5af52760a1f9b66f2c7a744d5c25b2225090f3e",
            "versions": [
                "0.0.1",
                "1.0.3"
            ],
            "import_time": "2026-04-16T15:39:21.59833809Z",
            "modified_time": "2026-04-16T10:28:47Z",
            "id": "RLMA-2026-02089"
        }
    ]
}
References
Credits

Affected packages

RubyGems / monolith-twirp-pullsd-users

Package

Name
monolith-twirp-pullsd-users
Purl
pkg:gem/monolith-twirp-pullsd-users

Affected ranges

Affected versions

0.*
0.0.1
1.*
1.0.3

Database specific

source 
"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/rubygems/monolith-twirp-pullsd-users/MAL-2026-2816.json"