npm

phx-core4 @8.0.0

Vulnerability report · Last retrieved from osv.dev June 23, 2026 at 3:29 AM UTC

Malicious

OSV ID

MAL-2026-1813

Ecosystem

npm

Summary

The package phx-core4 was found to contain malicious code.

Source: amazon-inspector (f34a66abe0d68aa9e9250d5fea5c5a537be067859159164a917c667923d51d0c)

Protect your entire dependency tree

Scan your lock files automatically on every PR. Block malicious packages before they reach production.