See the full list of npm packages compromised in the "Shai-Hulud supply chain attack – Sep 2025" [View compromised packages].
Find out if you have vulnerabilities that put you at risk
Test your applicationsVULNERABILITY | AFFECTS | TYPE | PUBLISHED |
---|---|---|---|
| gnupg<2.4.8-r1 | chainguard:latest | 5 Oct 2025 |
| gnupg<2.4.8-r1 | chainguard:latest | 5 Oct 2025 |
| linux-aws-6.12<6.12.50-r0 | chainguard:latest | 5 Oct 2025 |
| linux-aws-6.12<6.12.50-r0 | chainguard:latest | 5 Oct 2025 |
| awx<24.6.1-r17 | chainguard:latest | 5 Oct 2025 |
| awx<24.6.1-r17 | chainguard:latest | 5 Oct 2025 |
| awx<24.6.1-r17 | chainguard:latest | 5 Oct 2025 |
| awx<24.6.1-r17 | chainguard:latest | 5 Oct 2025 |
| nemo<2.4.1-r1 | chainguard:latest | 5 Oct 2025 |
| nemo<2.4.1-r1 | chainguard:latest | 5 Oct 2025 |
| weaviate<1.33.0-r1 | chainguard:latest | 4 Oct 2025 |
| telegraf-1.36<1.36.2-r1 | chainguard:latest | 4 Oct 2025 |
| weaviate<1.33.0-r1 | chainguard:latest | 4 Oct 2025 |
| telegraf-1.36<1.36.2-r1 | chainguard:latest | 4 Oct 2025 |
| tensorflow-cpu-jupyter<2.20.0-r3 | chainguard:latest | 4 Oct 2025 |
| tensorflow-cpu-jupyter<2.20.0-r3 | chainguard:latest | 4 Oct 2025 |
| argo-workflows-fips-3.6<3.6.11-r1 | chainguard:latest | 4 Oct 2025 |
| argo-workflows-3.6<3.6.11-r1 | chainguard:latest | 4 Oct 2025 |
| argo-workflows-3.6<3.6.11-r1 | chainguard:latest | 4 Oct 2025 |
| argo-workflows-fips-3.6<3.6.11-r1 | chainguard:latest | 4 Oct 2025 |
| hydra-fips<2.3.0-r10 | chainguard:latest | 3 Oct 2025 |
| sftpgo<2.6.6-r9 | chainguard:latest | 3 Oct 2025 |
| saf<1.5.1-r0 | chainguard:latest | 3 Oct 2025 |
| saf<1.5.1-r0 | chainguard:latest | 3 Oct 2025 |
| saf<1.5.1-r0 | chainguard:latest | 3 Oct 2025 |
| saf<1.5.1-r0 | chainguard:latest | 3 Oct 2025 |
| sftpgo<2.6.6-r9 | chainguard:latest | 3 Oct 2025 |
| hydra<2.3.0-r12 | chainguard:latest | 3 Oct 2025 |
| hydra<2.3.0-r12 | chainguard:latest | 3 Oct 2025 |
| gitea<1.24.6-r1 | chainguard:latest | 3 Oct 2025 |