npm

@bold-commerce/stacks-ui @99.9.9

Vulnerability report · Last retrieved from osv.dev July 9, 2026 at 12:27 PM UTC

Malicious

OSV ID

MAL-2026-3344

Ecosystem

npm

Summary

The package @bold-commerce/stacks-ui was found to contain malicious code.

Source: amazon-inspector (5cc580455dc6abd5d1a25634543e82bc51cf855c3494024397eb17d4c7fc1eff)

Protect your entire dependency tree

Scan your lock files automatically on every PR. Block malicious packages before they reach production.