npm

ally-whitelist @100.0.0

Vulnerability report · Last retrieved from osv.dev June 23, 2026 at 4:30 AM UTC

Malicious

OSV ID

MAL-2026-3303

Ecosystem

npm

Summary

The package ally-whitelist was found to contain malicious code.

Source: amazon-inspector (db0425c83302370ea529e2baaabc1ada94b5515fb01d3437ed45bbc766e4e8f4)

Protect your entire dependency tree

Scan your lock files automatically on every PR. Block malicious packages before they reach production.