VDB
KO

MAL-2026-6260

Malicious code in free-anthropic-claude (npm)

Details

--- _-= Per source details. Do not edit below this line.=-_

## Source: ossf-package-analysis (01d5845e6a8ba2bca29e99aaed593e5c7616c9ff89eb32d3d319dd65cf1839b0) The OpenSSF Package Analysis project identified 'free-anthropic-claude' @ 5.0.0 (npm) as malicious.

It is considered malicious because:

- The package executes one or more commands associated with malicious behavior.

Are you affected?

Enter the version of the package you're using.

Affected packages

npm / free-anthropic-claude

No fixed version published yet for free-anthropic-claude (npm). Pin to a known-safe version or switch to an alternative.