npm
Malicious @antv/graphin-components @2.6.1
Vulnerability report · Last retrieved from osv.dev June 23, 2026 at 4:30 AM UTC
OSV ID
MAL-2026-4023
Ecosystem
npm
Summary
The package @antv/graphin-components was found to contain malicious code.
Source: amazon-inspector (c9d635400e1db1db3c4f31cba4c5751dd2caccb23bca783e013e8cc379d860b1)
Protect your entire dependency tree
Scan your lock files automatically on every PR. Block malicious packages before they reach production.