VDB
KO

MAL-2026-6232

Malicious code in free-claude (npm)

Details

--- _-= Per source details. Do not edit below this line.=-_

## Source: ossf-package-analysis (250141bb9d199b78a2ed2568d8695e536ca9c469eff127f0c487ec56cae8664e) The OpenSSF Package Analysis project identified 'free-claude' @ 1.1.0 (npm) as malicious.

It is considered malicious because:

- The package executes one or more commands associated with malicious behavior.

Are you affected?

Enter the version of the package you're using.

Affected packages

npm / free-claude

No fixed version published yet for free-claude (npm). Pin to a known-safe version or switch to an alternative.