See the full list of npm packages compromised in the "Shai-Hulud supply chain attack – Sep 2025" [View compromised packages].
Find out if you have vulnerabilities that put you at risk
Test your applicationsVULNERABILITY | AFFECTS | TYPE | PUBLISHED |
---|---|---|---|
| rav1e<0.7.1-r1 | alpine:3.22 | 24 Sept 2025 |
| qt6-qtwebengine<6.8.3-r2 | alpine:3.22 | 22 Sept 2025 |
| qt6-qtwebengine<6.8.3-r2 | alpine:3.22 | 22 Sept 2025 |
| qt6-qtwebengine<6.8.3-r2 | alpine:3.22 | 22 Sept 2025 |
| tiff<4.7.1-r0 | alpine:3.21 | 22 Sept 2025 |
| tiff<4.7.1-r0 | alpine:3.21 | 22 Sept 2025 |
| tiff<4.7.1-r0 | alpine:3.22 | 22 Sept 2025 |
| tiff<4.7.1-r0 | alpine:3.22 | 22 Sept 2025 |
| expat<2.7.2-r0 | alpine:3.21 | 22 Sept 2025 |
| expat<2.7.2-r0 | alpine:3.22 | 22 Sept 2025 |
| expat<2.7.2-r0 | alpine:3.20 | 22 Sept 2025 |
| expat<2.7.2-r0 | alpine:3.19 | 22 Sept 2025 |
| lighttpd<0-r0 | alpine:3.15 | 19 Sept 2025 |
| libarchive<3.4.2-r0 | alpine:3.16 | 18 Sept 2025 |
| libarchive<3.4.2-r0 | alpine:3.15 | 18 Sept 2025 |
| libarchive<3.4.2-r0 | alpine:3.18 | 18 Sept 2025 |
| luajit<2.1_p20240815-r1 | alpine:3.19 | 18 Sept 2025 |
| luajit<2.1_p20240815-r1 | alpine:3.19 | 18 Sept 2025 |
| luajit<2.1_p20240815-r1 | alpine:3.19 | 18 Sept 2025 |
| luajit<2.1_p20240815-r1 | alpine:3.22 | 18 Sept 2025 |
| luajit<2.1_p20240815-r1 | alpine:3.22 | 18 Sept 2025 |
| luajit<2.1_p20240815-r1 | alpine:3.21 | 18 Sept 2025 |
| luajit<2.1_p20240815-r1 | alpine:3.21 | 18 Sept 2025 |
| luajit<2.1_p20240815-r1 | alpine:3.22 | 18 Sept 2025 |
| luajit<2.1_p20240815-r1 | alpine:3.20 | 18 Sept 2025 |
| luajit<2.1_p20240815-r1 | alpine:3.21 | 18 Sept 2025 |
| luajit<2.1_p20240815-r1 | alpine:3.20 | 18 Sept 2025 |
| luajit<2.1_p20240815-r1 | alpine:3.20 | 18 Sept 2025 |
| elfutils<0.174-r0 | alpine:3.18 | 17 Sept 2025 |
| lighttpd<0-r0 | alpine:3.16 | 17 Sept 2025 |