PkgRadar

Malware advisory

MAL-2026-2037

Malicious code in @emilgroup/auth-sdk-node (npm)

12 affected releases in the PkgRadar corpus · published 2026-03-22 · upstream advisory

Affected packages

PackageEcosystemVersionVerdictScanned (UTC)
@emilgroup/auth-sdk-nodenpm1.22.1-beta.16High risk2026-07-14
@emilgroup/auth-sdk-nodenpm1.22.1-beta.15High risk2026-07-14
@emilgroup/auth-sdk-nodenpm1.22.1-beta.13High risk2026-07-14
@emilgroup/auth-sdk-nodenpm1.22.1-beta.14High risk2026-07-14
@emilgroup/auth-sdk-nodenpm1.22.1-beta.11High risk2026-07-14
@emilgroup/auth-sdk-nodenpm1.22.1-beta.6High risk2026-07-14
@emilgroup/auth-sdk-nodenpm1.22.1-beta.12High risk2026-07-14
@emilgroup/auth-sdk-nodenpm1.22.1-beta.9High risk2026-07-14
@emilgroup/auth-sdk-nodenpm1.22.1-beta.8High risk2026-07-14
@emilgroup/auth-sdk-nodenpm1.22.0High risk2026-07-14
@emilgroup/auth-sdk-nodenpm1.22.1-beta.17High risk2026-07-14
@emilgroup/auth-sdk-nodenpm1.22.1-beta.18High risk2026-07-14

PkgRadar blocks these releases at the CI gate before they reach your build. Start free or see all advisories.

MAL-2026-2037 — malicious package advisory | PkgRadar