npm
Malicious rnx-align-deps @99.0.7
Vulnerability report · Last retrieved from osv.dev July 8, 2026 at 7:23 PM UTC
OSV ID
MAL-2026-6940
Ecosystem
npm
Summary
No a static rule matches and no behavioral findings were produced for this package version. There is no evidence of credential access, network exfiltration, install-time fetch-and-execute, lifecycle-script abuse, silent-relay, or other supply-chain attack patterns against installers.
Source: amazon-inspector (4fd85779926afc494fd03f154fa151e30ee831b5aa8f260e01b29ee8f7a676d5)
Protect your entire dependency tree
Scan your lock files automatically on every PR. Block malicious packages before they reach production.