npm
Malicious @google-pay-trust/init-google-pay @99.0.1
Vulnerability report · Last retrieved from osv.dev June 23, 2026 at 4:30 AM UTC
OSV ID
MAL-2026-3064
Ecosystem
npm
Summary
The package @google-pay-trust/init-google-pay was found to contain malicious code.
Source: amazon-inspector (155365fdfef6534b365ca7ef2fd9ec698aa3a0af9e1130483658eba525f70e81)
Protect your entire dependency tree
Scan your lock files automatically on every PR. Block malicious packages before they reach production.