PkgRadar

Malware advisory

MAL-2026-4533

Malicious code in codebuff-cli (npm)

11 affected releases in the PkgRadar corpus · published 2026-05-22 · upstream advisory

Affected packages

PackageEcosystemVersionVerdictScanned (UTC)
codebuff-clinpm1.1.1High risk2026-06-23
codebuff-clinpm1.0.27High risk2026-06-23
codebuff-clinpm1.1.5High risk2026-06-23
codebuff-clinpm1.0.28High risk2026-06-23
codebuff-clinpm1.1.0High risk2026-06-23
codebuff-clinpm1.1.4High risk2026-06-23
codebuff-clinpm1.1.11High risk2026-06-22
codebuff-clinpm1.1.10High risk2026-06-22
codebuff-clinpm1.1.12High risk2026-06-22
codebuff-clinpm1.1.6High risk2026-06-20
codebuff-clinpm1.1.2High risk2026-06-20

PkgRadar blocks these releases at the CI gate before they reach your build. Start free or see all advisories.

MAL-2026-4533 — malicious package advisory | PkgRadar