Logo
npm

@antv/g-plugin-dragndrop @2.3.1

Vulnerability report · Last retrieved from osv.dev June 23, 2026 at 4:30 AM UTC

Malicious

OSV ID

MAL-2026-3943

Ecosystem

npm

Summary

The package @antv/g-plugin-dragndrop was found to contain malicious code.

Source: amazon-inspector (3e2f9d4540ed9a59f8e53c19fa001fc3f2c6c564122af5a84e0f29ccffd01a49)

Protect your entire dependency tree

Scan your lock files automatically on every PR. Block malicious packages before they reach production.

SEE HACKTRON REVIEW → SCAN DEPENDENCIES