npm

sight-bind @0.1.0

Vulnerability report · Last retrieved from osv.dev July 15, 2026 at 7:51 AM UTC

Malicious

OSV ID

MAL-2026-10566

Ecosystem

npm

Summary

The package was found to contain malicious code or consuming dependency that contains malicious code

Source: amazon-inspector (398788014436c7e95df3045f9b32398c3de46b8c9275c0437e44bda1dcb6cc00)

Protect your entire dependency tree

Scan your lock files automatically on every PR. Block malicious packages before they reach production.