—

MAL-2026-6314

Malicious code in @zynkit/probe (npm)

Details

--- _-= Per source details. Do not edit below this line.=-_

## Source: amazon-inspector (5f7da2d08466718d66bb9a80478987eab5041e19ee53f80d6968e6dc3069edf2) No concrete indicators of installer-side harm were observed in this package version. No lifecycle scripts performing remote fetch-and-execute, no credential or environment scraping, no hardcoded attacker network destinations, and no silent-relay patterns are present.

Are you affected?

Enter the version of the package you're using.

Affected packages

npm / @zynkit/probe

No fixed version published yet for @zynkit/probe (npm). Pin to a known-safe version or switch to an alternative.

References

https://www.npmjs.com/package/@zynkit/probe/v/0.0.1 [PACKAGE]