← All advisoriesImportant severity7.5NVD Advisory· Published Jun 25, 2026pnpm: pnpm: Supply chain compromise via manipulated package source stringsCVE-2026-55487Descriptionpnpm: pnpm: Supply chain compromise via manipulated package source stringsAffected products1Pnpm/Pnpmllm-fuzzyPatchesVulnerability mechanicsNews mentions0No linked articles in our index yet.