Logo
npm

yahoo-commerce @99.99.99

Vulnerability report · Last retrieved from osv.dev June 23, 2026 at 3:29 AM UTC

Malicious

OSV ID

MAL-2026-1879

Ecosystem

npm

Summary

The package yahoo-commerce was found to contain malicious code.

Source: amazon-inspector (e3725b1c28bf27cb9ae988e61fc0c7b790b588587cef59086e7d63460f2241a9)

Protect your entire dependency tree

Scan your lock files automatically on every PR. Block malicious packages before they reach production.

SEE HACKTRON REVIEW → SCAN DEPENDENCIES