{"uuid": "f8a30632-bf8e-45b7-a49d-2683ceb2171e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-53892", "type": "seen", "source": "https://bsky.app/profile/kazupon.dev/post/3mm2j4xtzlk2y", "content": "Reverted PR #2470 on vue-i18n master.\nCVE-2025-53892 backport has no malicious code, but the contributor's GitHub account got renamed \u2192 deleted, similar to a supply-chain attack precursor pattern.\nBeing cautious in case of unknown variants. \nI'll reapply the fix.\n\ngithub.com/intlify/vue-...", "creation_timestamp": "2026-05-17T13:53:41.326072Z"}