New: Corgea AI Pentesting — autonomous penetration testing in hours, not weeks
CRITICAL npm Malware

Malicious code in @checkrhq/adjudication-api-client (npm)

MAL-2026-6789

Published · Modified

Description


__

Source: ossf-package-analysis (dc8d5c39d401d053978bb8f17234bc79db730d15b55634319f239baf32dc9b0b)

The OpenSSF Package Analysis project identified '@checkrhq/adjudication-api-client' @ 0.0.2 (npm) as malicious.

It is considered malicious because:

  • The package executes one or more commands associated with malicious behavior.

Ready to move

Start Securing

Free, no credit card | First findings in minutes