New Blog: Mini Shai-Hulud "Miasma" Hits @redhat-cloud-services: 32 Packages at Risk
Edit Calendar Icon 1 Jun 2026
SafeDep Logo
malware npm

@patternfly-v5/patternfly

discovered 2025-01-16

@patternfly-v5/patternfly is identified in the SafeDep analysis "Malicious npm Packages using Burp Collaborator for Dependency Confusion Attack". Multiple npm packages impersonating popular package names were published to the npm registry including by a Snyk researcher apparently targeting internal packages at Cursor AI.

Threat types

rat persistence dependency_confusion typosquat

Malicious versions

  • 1.0.2

Campaigns

Techniques

Read the full analysis →