PkgRadar

Malware advisory

MAL-2026-2920

Malicious code in buffer-util-extend (npm)

3 affected releases in the PkgRadar corpus · published 2026-04-14 · upstream advisory

Affected packages

PackageEcosystemVersionVerdictScanned (UTC)
buffer-util-extendnpm0.0.1-securityHigh risk2026-07-14
buffer-util-extendnpm1.0.11Low risk2026-05-27
buffer-util-extendnpm1.0.13Low risk2026-05-27

PkgRadar blocks these releases at the CI gate before they reach your build. Start free or see all advisories.

MAL-2026-2920 — malicious package advisory | PkgRadar