See the full list of npm packages compromised in the "SHA1-Hulud npm supply chain incident – Nov 2025" [View compromised packages].
Find out if you have vulnerabilities that put you at risk
Test your applicationsAPPLICATION
OPERATING SYSTEM
| VULNERABILITY | AFFECTS | TYPE | PUBLISHED |
|---|---|---|---|
| google/protobuf<3.4.0 | Composer | 10 Mar 2019 |
| google-protobuf<3.4.0 | RubyGems | 10 Mar 2019 |
| protobuf<3.4.0 | cocoapods | 10 Mar 2019 |
| googleprotobuf>=0.0.0 | cocoapods | 10 Mar 2019 |
| protobuf* | ubuntu:14.04 | 25 Sept 2017 |
| protobuf<0.0.0 | ubuntu:19.10 | 25 Sept 2017 |
| protobuf<0.0.0 | ubuntu:20.04 | 25 Sept 2017 |
| protobuf* | debian:12 | 25 Sept 2017 |
| protobuf* | debian:8 | 25 Sept 2017 |
| protobuf* | ubuntu:21.04 | 25 Sept 2017 |
| protobuf<2.6.1-1.3ubuntu0.1~esm2 | ubuntu:16.04 | 25 Sept 2017 |
| protobuf<0.0.0 | ubuntu:19.04 | 25 Sept 2017 |
| protobuf<0.0.0 | ubuntu:18.10 | 25 Sept 2017 |
| protobuf* | debian:9 | 25 Sept 2017 |
| protobuf<0.0.0 | ubuntu:15.04 | 25 Sept 2017 |
| protobuf* | debian:11 | 25 Sept 2017 |
| protobuf<0.0.0 | ubuntu:21.10 | 25 Sept 2017 |
| protobuf* | debian:13 | 25 Sept 2017 |
| protobuf* | debian:unstable | 25 Sept 2017 |
| protobuf* | ubuntu:20.10 | 25 Sept 2017 |
| protobuf* | ubuntu:18.04 | 25 Sept 2017 |
| protobuf* | debian:10 | 25 Sept 2017 |