Ecosystem	Package	Version

Vulnerabilities

sonatype-2026-000087

sonatype-2026-000087

NPM Security Holding Packages - Fri Jan 09 2026

Published Jan 9, 2026

https://help.sonatype.com/en/sonatype-malware-data.html https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-181.json https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-182.json

CVSS ScoreCritical

10.0

Ecosystem	Package	Version


npm	smintio-portals-component-sdk	0.0.1-security
npm	smintio-portals-component-sdk	1.0.0
npm	smintio-portals-component-sdk	3.0.0
npm	smintio-portals-component-sdk	9.0.0
npm	yunxohang10	0.0.1-security
npm	yunxohang10	1.0.0

sonatype-2026-000087 | Components Impacted | Sonatype Guide | Sonatype Guide