npm

path-external @1.0.14

Vulnerability report · Last retrieved from osv.dev June 23, 2026 at 3:29 AM UTC

Malicious

OSV ID

MAL-2026-2161

Ecosystem

npm

Summary

The package path-external was found to contain malicious code.

Source: amazon-inspector (83954c990d9e7dddb109dea7f9ed24bc8ded6b95da0ed050b43e7486675fc67c)

Protect your entire dependency tree

Scan your lock files automatically on every PR. Block malicious packages before they reach production.