npm
Malicious @squawk/fix-data @0.6.8
Vulnerability report · Last retrieved from osv.dev June 23, 2026 at 3:29 AM UTC
OSV ID
MAL-2026-3441
Ecosystem
npm
Summary
The package @squawk/fix-data was found to contain malicious code.
Source: amazon-inspector (624b956af551986dc49e0004c6e0c804f3b48f57216b63bb5784c9c236e866da)
Protect your entire dependency tree
Scan your lock files automatically on every PR. Block malicious packages before they reach production.