VYPR

npm package

@tygo-van-den-hurk/slyde

pkg:npm/%40tygo-van-den-hurk/slyde

Vulnerabilities (1)

  • CVE-2026-26974Feb 20, 2026
    affected < 0.0.5fixed 0.0.5

    Slyde is a program that creates animated presentations from XML. In versions 0.0.4 and below, Node.js automatically imports **/*.plugin.{js,mjs} files including those from node_modules, so any malicious package with a .plugin.js file can execute arbitrary code when installed or r