npm
Malicious @squawk/airway-data @0.5.8
Vulnerability report · Last retrieved from osv.dev June 23, 2026 at 3:29 AM UTC
OSV ID
MAL-2026-3439
Ecosystem
npm
Summary
The package @squawk/airway-data was found to contain malicious code.
Source: amazon-inspector (f583cb04df39146f4b9270ebfb086bb84b5cf8f799a0565f4b26163ad2a34cd1)
Protect your entire dependency tree
Scan your lock files automatically on every PR. Block malicious packages before they reach production.