Malicious
OSV ID
MAL-2026-3340
Ecosystem
npm
Summary
The package trevlo was found to contain malicious code.
Source: amazon-inspector (3414c71889d8ebf7ad09c9b0bf9ab63f8f6589e1e030e35e40a971b767f51ad1)
Protect your entire dependency tree
Scan your lock files automatically on every PR. Block malicious packages before they reach production.