VYPR

Color

by Qix

npm: color

Source repositories

CVEs (1)

  • CVE-2025-59143HigSep 15, 2025
    risk 0.57cvss epss 0.00

    color is a Javascript color conversion and manipulation library. On 8 September 2025, the npm publishing account for color was taken over after a phishing attack. Version 5.0.1 was published, functionally identical to the previous patch version, but with a malware payload added…