npm
Malicious chai-as-chain-v2 @1.1.1
Vulnerability report · Last retrieved from osv.dev July 9, 2026 at 12:27 PM UTC
OSV ID
MAL-2026-2886
Ecosystem
npm
Summary
The package chai-as-chain-v2 was found to contain malicious code.
Source: amazon-inspector (d2dd43a8df03dc914cb2bd9c028c452f5fd749767bd2c2faef275a9c840c19c5)
Protect your entire dependency tree
Scan your lock files automatically on every PR. Block malicious packages before they reach production.