PkgRadar

Malware advisory

MAL-2026-6434

Malicious code in serverless-convention (npm)

1 affected release in the PkgRadar corpus · published 2026-06-24 · upstream advisory

Affected packages

PackageEcosystemVersionVerdictScanned (UTC)
serverless-conventionnpm2.0.4High risk2026-06-25

PkgRadar blocks these releases at the CI gate before they reach your build. Start free or see all advisories.