VDB
KO

MAL-2026-5967

Malicious code in cryptodao-config (npm)

Details

--- _-= Per source details. Do not edit below this line.=-_

## Source: ossf-package-analysis (c9afe812a548e5d3b8158d3e359c37ec874e86c003476c8dc7b9de732113ca86) The OpenSSF Package Analysis project identified 'cryptodao-config' @ 99.99.99 (npm) as malicious.

It is considered malicious because:

- The package communicates with a domain associated with malicious activity.

Are you affected?

Enter the version of the package you're using.

Affected packages

npm / cryptodao-config

No fixed version published yet for cryptodao-config (npm). Pin to a known-safe version or switch to an alternative.