Aikido Intel
Secure My Code
aikido intel logoPowered by AI + Aikido Research Team

Aikido Threat Intelligence

Your earliest warning for supply chain threats. We expose malware and vulnerabilities in open-source ecosystems, within minutes.

/VULNERABILITIES
1
6
7
9
/MALWARE
1
1
8
2
4
5
VulnerabilitiesMalwarePackages

Most Recent

Medium
23 hours ago

@qwen-code/qwen-code is vulnerable to Command Injection

Upgrade the @qwen-code/qwen-code library to the patch version.

Pre-CVE
Found by Aikido Intel before public disclosure or CVE publication.
AIKIDO-2026-10114
Medium
23 hours ago

tkms is vulnerable to Uncontrolled Resource Consumption

Upgrade the tkms library to the patch version.

Pre-CVE
Found by Aikido Intel before public disclosure or CVE publication.
AIKIDO-2026-10113
Low
23 hours ago

sigstat-grpc is vulnerable to Insertion of Sensitive Information into Log File

Upgrade the sigstat-grpc library to the patch version.

Pre-CVE
Found by Aikido Intel before public disclosure or CVE publication.
AIKIDO-2026-10112
Medium
23 hours ago

@remotion/studio-server is vulnerable to Improper Access Control

Upgrade the @remotion/studio-server library to the patch version.

Pre-CVE
Found by Aikido Intel before public disclosure or CVE publication.
AIKIDO-2026-10111
Low
23 hours ago

github.com/apache/arrow-go/v18 is vulnerable to Uncaught Exception

Upgrade the github.com/apache/arrow-go/v18 library to the patch version.

Pre-CVE
Found by Aikido Intel before public disclosure or CVE publication.
AIKIDO-2026-10110
Low
23 hours ago

pulpcore is vulnerable to Generation of Error Message Containing Sensitive Information

Upgrade the pulpcore library to the patch version.

Pre-CVE
Found by Aikido Intel before public disclosure or CVE publication.
AIKIDO-2026-10109
Medium
23 hours ago

@taquito/taquito is vulnerable to Cross-Site Scripting (XSS)

Upgrade the @taquito/taquito library to the patch version.

Pre-CVE
Found by Aikido Intel before public disclosure or CVE publication.
AIKIDO-2026-10108
Low
23 hours ago

plexus-xml is vulnerable to Regular Expression Denial of Service (ReDoS)

Upgrade the org.codehaus.plexus:plexus-xml library to the patch version.

Pre-CVE
Found by Aikido Intel before public disclosure or CVE publication.
AIKIDO-2026-10107
Low
23 hours ago

tensordict is vulnerable to Race Condition

Upgrade the tensordict library to the patch version.

Pre-CVE
Found by Aikido Intel before public disclosure or CVE publication.
AIKIDO-2026-10106
Medium
Jan 30, 2026

@aws-amplify/cli is vulnerable to OS Command Injection

Upgrade the @aws-amplify/cli library to the patch version.

Pre-CVE
Found by Aikido Intel before public disclosure or CVE publication.
AIKIDO-2026-10105

Protect yourself from malware upon install with Aikido Safe Chain (open source)

Install Safe Chain

High Profile Pre-CVE
Found by Aikido Intel before public disclosure or CVE publication.

Search and Compare Health
of Open-Source Packages.

Make confident, secure choices for your next build.

Go to Package Health
Packagist
NPM
PyPi

Our Intel, Your Security

Open source

Open Source

Aikido Intel is available under AGPL license, developers may freely use, modify, and distribute the vulnerability & malware feed.

Contribute to Intel
License the intel database

License the Intel Database

Want to integrate our threat intelligence into your product? Get access through our commercial API.

Get Access

Get Secure Now

Secure your code, cloud, and runtime environments in one central system. Find and fix vulnerabilities automatically.

Get Secure

Get Secure Now

Secure your code, cloud, and runtime environments in one central system. Find and fix vulnerabilities automatically.

Start for Free
Book a Demo

No credit card required | Scan results in 32secs.

Aikido Platform
Subscribe
Stay up to date with all updates
LinkedIn YouTube X
© 2026 Aikido Security BV | BE0792914919
Ghent, Belgium | San Francisco, US
SOC 2SOC 2Compliant
ISO 27001ISO 27001Compliant
Get Security Done