npm
Malicious @bitwarden/cli @2026.4.0
Vulnerability report · Last retrieved from osv.dev June 23, 2026 at 3:29 AM UTC
OSV ID
MAL-2026-3020
Ecosystem
npm
Summary
The package @bitwarden/cli was found to contain malicious code.
Source: amazon-inspector (c6fb2336936a86f37fc2018f8e68dc9989ffc3e79aa23297bf470de178201f50)
Protect your entire dependency tree
Scan your lock files automatically on every PR. Block malicious packages before they reach production.