PkgRadar

Malware advisory

MAL-2026-5735

Malicious code in node-multi-downloader (npm)

1 affected release in the PkgRadar corpus · published 2026-06-13 · upstream advisory

Affected packages

PackageEcosystemVersionVerdictScanned (UTC)
node-multi-downloadernpm5.0.14-rc.3High risk2026-07-13

PkgRadar blocks these releases at the CI gate before they reach your build. Start free or see all advisories.

MAL-2026-5735 — malicious package advisory | PkgRadar