Ecosystem	Package	Version

Vulnerabilities

sonatype-2026-000323

sonatype-2026-000323

Potentially Unwanted Applications - Wed Feb 04 2026 [PUA]

Published Feb 4, 2026

https://help.sonatype.com/en/sonatype-malware-data.html https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-856.json

CVSS ScoreNone

0.0

Ecosystem	Package	Version


npm	chai-await-promised	3.3.5
npm	chai-promised-await	3.3.5
npm	chai-prop	0.0.1-security
npm	chai-prop	1.1.7
npm	dotenv-mono-cli	3.3.5
npm	dotenv-plugin	10.0.1
npm	dotenv-plugin	10.0.2
npm	dotenv-plugin	2.3.5
npm	dotenv-plugin	3.3.5
pypi	luxix	0.0.1
pypi	zuix	0.0.1

sonatype-2026-000323 | Components Impacted | Sonatype Guide