npm

@gleamkit/engine.io @6.6.5

Vulnerability report · Last retrieved from osv.dev July 14, 2026 at 9:46 AM UTC

Malicious

OSV ID

MAL-2026-10476

Ecosystem

npm

Summary

The package was found to contain malicious code or consuming dependency that contains malicious code

Source: amazon-inspector (008464ca4d7ba15b4b8c6d3a979586c61bd527aef3a209571d28c0ba912403ae)

Protect your entire dependency tree

Scan your lock files automatically on every PR. Block malicious packages before they reach production.