Logo
npm

@antv/g-plugin-box2d @2.3.1

Vulnerability report · Last retrieved from osv.dev June 23, 2026 at 4:30 AM UTC

Malicious

OSV ID

MAL-2026-3934

Ecosystem

npm

Summary

The package @antv/g-plugin-box2d was found to contain malicious code.

Source: amazon-inspector (472878bc774f15d2aa78a994e55a9a494c1696a0892735aee07434b127a751e1)

Protect your entire dependency tree

Scan your lock files automatically on every PR. Block malicious packages before they reach production.

SEE HACKTRON REVIEW → SCAN DEPENDENCIES