npm
Malicious @relxui/react @99.9.1
Vulnerability report · Last retrieved from osv.dev July 9, 2026 at 12:27 PM UTC
OSV ID
MAL-2026-2592
Ecosystem
npm
Summary
The package @relxui/react was found to contain malicious code.
Source: amazon-inspector (b91a4fd21ef12fb1580ab9240c8b51f39c0ba26d19b683ebcac2d86ed7936e78)
Protect your entire dependency tree
Scan your lock files automatically on every PR. Block malicious packages before they reach production.