npm

sanitize-url @8.9.9

Vulnerability report · Last retrieved from osv.dev June 23, 2026 at 4:30 AM UTC

Malicious

OSV ID

MAL-2026-2701

Ecosystem

npm

Summary

The package sanitize-url was found to contain malicious code.

Source: amazon-inspector (36f98260cc1b910a8921671795398ad7f986f02b0b7bc8efef18a4df09b87d51)

Protect your entire dependency tree

Scan your lock files automatically on every PR. Block malicious packages before they reach production.