@sber-ecom-core/sberpay-widget

One or more versions of this package have been flagged as containing malicious code. Audit any system that installed an affected version.

• GHSA-6rfw-m3fj-7g8qMalware in @sber-ecom-core/sberpay-widget
  May 29, 2026