MAL-2026-778

See a problem?

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/ac-dom-nodes/MAL-2026-778.json

JSON Data

https://api.osv.dev/v1/vulns/MAL-2026-778

Published

2026-02-06T02:07:02Z

Modified

2026-04-16T15:57:02.528075Z

Summary

Malicious code in ac-dom-nodes (npm)

Details

-= Per source details. Do not edit below this line.=-

Source: amazon-inspector (b323cec1a59645d9dcb2c0951a0f7d31b362ac58e4f930306a940ed67037b20d)

The package ac-dom-nodes was found to contain malicious code.

Source: ossf-package-analysis (e4ba72c418b98dcfe5864050915ff801c6714ac42005dd039c8823f04231bdd6)

The OpenSSF Package Analysis project identified 'ac-dom-nodes' @ 1.9.0 (npm) as malicious.

It is considered malicious because:

The package communicates with a domain associated with malicious activity.

Database specific

{
    "malicious-packages-origins": [
        {
            "sha256": "b323cec1a59645d9dcb2c0951a0f7d31b362ac58e4f930306a940ed67037b20d",
            "ranges": [
                {
                    "type": "SEMVER",
                    "events": [
                        {
                            "introduced": "0"
                        }
                    ]
                }
            ],
            "source": "amazon-inspector",
            "modified_time": "2026-02-06T02:07:02Z",
            "import_time": "2026-02-06T03:03:33.782054511Z"
        },
        {
            "sha256": "e4ba72c418b98dcfe5864050915ff801c6714ac42005dd039c8823f04231bdd6",
            "source": "ossf-package-analysis",
            "modified_time": "2026-03-12T04:11:39Z",
            "import_time": "2026-03-12T04:17:42.376856972Z",
            "versions": [
                "1.9.0"
            ]
        },
        {
            "sha256": "cb37b1ac0be57beafb46fd9aabbed186da9c5c28461f8f212e1b8c1a5c7a6ee9",
            "source": "reversing-labs",
            "modified_time": "2026-03-18T12:37:26Z",
            "id": "RLMA-2026-01088",
            "import_time": "2026-03-19T12:18:31.549943998Z",
            "versions": [
                "99.9.9"
            ]
        },
        {
            "sha256": "4da45ea927e50724fa5b0743f17d83738ac4959a09e41238063506c7fde51736",
            "source": "reversing-labs",
            "modified_time": "2026-04-16T09:42:45Z",
            "id": "RLUA-2026-01873",
            "import_time": "2026-04-16T15:39:24.919821108Z",
            "versions": [
                "1.9.1",
                "1.9.0"
            ]
        }
    ]
}

References

Credits

- Amazon Inspector - FINDER
- - actran@amazon.com
- OpenSSF: Package Analysis - FINDER
- - https://github.com/ossf/package-analysis
  - https://openssf.slack.com/channels/package_analysis
- ReversingLabs - FINDER
- - https://www.reversinglabs.com

Affected packages

npm / ac-dom-nodes

Package

Name: ac-dom-nodes; View open source insights on deps.dev
Purl: pkg:npm/ac-dom-nodes

Affected ranges

Type: SEMVER
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.9.0

1.9.1

99.*

99.9.9

Database specific

source

"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/ac-dom-nodes/MAL-2026-778.json"