Malware advisory

MAL-2026-5264

Malicious code in node-env-resolver-dotenvx (npm)

2 affected releases in the PkgRadar corpus · published 2026-06-05 · upstream advisory

Affected packages

Package	Ecosystem	Version	Verdict	Scanned (UTC)
`node-env-resolver-dotenvx`	npm	`1.0.1`	High risk	2026-06-22
`node-env-resolver-dotenvx`	npm	`2.0.1`	High risk	2026-06-22

PkgRadar blocks these releases at the CI gate before they reach your build. Start free or see all advisories.