FLAT-2CTTP – Vulnerability | Fluid Attacks Database

Database

Description

Malicious code in autotel-devtools (npm)

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version
npm	autotel-devtools	=0.1.1 \|\| =1.0.4 \|\| =2.1.1 \|\| =3.0.2 \|\| =4.0.1 \|\| =5.1.1 \|\| =6.1.2

Aliases

1. OSV-MAL-2026-52182. GCVE-MAL-2026-5218

References

1. https://www.endorlabs.com/learn/malicious-payload-in-ai-sdk-ollama-npm-package2. https://www.stepsecurity.io/blog/binding-gyp-npm-supply-chain-attack-spreads-like-worm

FLAT-2CTTP – Vulnerability | Fluid Attacks Database