pypi
Malicious solana-wallet-utils @1.0.0
Vulnerability report · Last retrieved from osv.dev June 23, 2026 at 3:29 AM UTC
OSV ID
MAL-2026-3382
Ecosystem
pypi
Summary
Code pretends to be a crypto utility but exfiltrates given private key / seed --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: 2026-05-solana-wallet-sdk Reasons (based on the campaign): - files-exfiltration - crypto-related - exfiltration-crypto
Source: kam193 (0fafa4851b72650b6cb905d88ab0e9ac73276e188d44bf1ff2cb010eb6945c59)
Protect your entire dependency tree
Scan your lock files automatically on every PR. Block malicious packages before they reach production.