Logo
npm

chain-promised-async @3.5.5

Vulnerability report · Last retrieved from osv.dev June 23, 2026 at 3:29 AM UTC

Malicious

OSV ID

MAL-2026-1689

Ecosystem

npm

Summary

The package chain-promised-async was found to contain malicious code.

Source: amazon-inspector (9260393814045a3ce0ce9a27ff97fffcbaad7b38ad91f54d8cad995c3deb43af)

Protect your entire dependency tree

Scan your lock files automatically on every PR. Block malicious packages before they reach production.

SEE HACKTRON REVIEW → SCAN DEPENDENCIES