Find vulnerabilities. Fix fast with AI.

Search components by package, version, or CVE to get started.

sonatype-2026-000119

Malicious Packages - Tue Jan 13 2026 [Credential Info Stealer/Env Vars]

Published Jan 13, 2026

CVSS ScoreHigh

7.1

sonatype-2026-000119

Malicious Packages - Tue Jan 13 2026 [Credential Info Stealer/Env Vars]

Published Jan 13, 2026

CVSS ScoreHigh

7.1


npm	@flipster/utils	0.0.1-security
npm	@flipster/utils	77.7.7
npm	@flipster/utils	88.8.8
npm	@flipster/utils	89.0.0
npm	@flipster/utils	90.0.0
npm	@flipster/utils	99.9.9
npm	kwp-shared-components-production-system	0.0.1-security
npm	kwp-shared-components-production-system	6.6.6
npm	kwp-shared-components-production-system	7.7.7
npm	kwp-shared-components-production-system	9.9.9

1-10 of 10


npm	@flipster/utils	0.0.1-security
npm	@flipster/utils	77.7.7
npm	@flipster/utils	88.8.8
npm	@flipster/utils	89.0.0
npm	@flipster/utils	90.0.0
npm	@flipster/utils	99.9.9
npm	kwp-shared-components-production-system	0.0.1-security
npm	kwp-shared-components-production-system	6.6.6
npm	kwp-shared-components-production-system	7.7.7
npm	kwp-shared-components-production-system	9.9.9

1-10 of 10

sonatype-2026-000119 | Components Impacted | Sonatype Guide | Sonatype Guide