npm
Malicious @source-row/source-container @99.9.1
Vulnerability report · Last retrieved from osv.dev June 23, 2026 at 3:29 AM UTC
OSV ID
MAL-2026-2858
Ecosystem
npm
Summary
The package @source-row/source-container was found to contain malicious code.
Source: amazon-inspector (ef1f8f064936d70cf38ce81e5a991bd0514ea059213b17683bf77edfb8cba45b)
Protect your entire dependency tree
Scan your lock files automatically on every PR. Block malicious packages before they reach production.