npm1 critical
serverless
13 known vulnerabilities · 1 critical · 0 high
serverless MCP Server vulnerable to Command Injection in list-projects tool
Published Dec 31, 2025
MAL-2022-2352
Malicious code in datadog-serverless-macro (npm)
Published Jun 20, 2022
MAL-2023-8603
Malicious code in serverless-provisioned-memory-report (npm)
Published Nov 23, 2023
MAL-2026-2646
Malicious code in okfe-serverless-conf (npm)
Published Apr 14, 2026
MAL-2025-191536
Malicious code in @wxi-dev/serverless-tsc-config (npm)
Published Dec 2, 2025
MAL-2023-457
Malicious code in foxy.io-serverless-functions-on-netlify-demo (npm)
Published Jul 14, 2023
MAL-2023-771
Malicious code in serverless-action (npm)
Published May 5, 2023
MAL-2022-6022
Malicious code in serverless-api-partners (npm)
Published Jun 20, 2022
MAL-2022-6023
Malicious code in serverless-infrastructure (npm)
Published Jun 20, 2022
MAL-2022-6024
Malicious code in serverless-push-hasura (npm)
Published Jul 21, 2022
MAL-2022-6025
Malicious code in serverless-yandex-cloud-template (npm)
Published Jun 20, 2022
MAL-2025-191373
Malicious code in @voiceflow/serverless-plugin-typescript (npm)
Published Nov 25, 2025
Check your entire dependency tree at onceRun dependency scan →