Malware advisory

MAL-2026-5488

Malicious code in react-pinojs (npm)

1 affected release in the PkgRadar corpus · published 2026-06-09 · upstream advisory

Affected packages

Package	Ecosystem	Version	Verdict	Scanned (UTC)
`react-pinojs`	npm	`1.0.6`	High risk	2026-06-22

PkgRadar blocks these releases at the CI gate before they reach your build. Start free or see all advisories.