npm
Malicious @gleamkit/engine.io @6.6.5
Vulnerability report · Last retrieved from osv.dev July 14, 2026 at 9:46 AM UTC
OSV ID
MAL-2026-10476
Ecosystem
npm
Summary
The package was found to contain malicious code or consuming dependency that contains malicious code
Source: amazon-inspector (008464ca4d7ba15b4b8c6d3a979586c61bd527aef3a209571d28c0ba912403ae)
Protect your entire dependency tree
Scan your lock files automatically on every PR. Block malicious packages before they reach production.