421 matches found
Malicious code in @actbase/react-native-tiktok (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e30674f65fae1c8cebcf4d015086a943502402cc93f3559653c406c592a62366 The package @actbase/react-native-tiktok was found to contain malicious code. Source: ghsa-malware...
Malicious code in node-calculator-fa00 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4262c0c6df0bff5c948bd56a719c0cf2d00aaf9699bb1c4a7367e6054ff72844 The package node-calculator-fa00 was found to contain malicious code. Source: ghsa-malware...
Malicious code in react-svg-module (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b9b392459196e5602d6e40cd38445d10e87e49d85b53b966aee554dd758fc1bd The package react-svg-module was found to contain malicious code. Source: ghsa-malware dd046bd4ddd4da53330303e0802201fda828bce7e1a21524aa7fc0da1fed95...
MAL-2025-190561 Malicious code in mystealer (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e07dcc4829f67b5eaf1fb27665849273abb5877ed274a401994d3aa5434ad2e6 The package mystealer was found to contain malicious code. Source: ghsa-malware 7efd023d7730e8b60a68685142e8d643ef789df80050b2138328616ad162387b Any...
Malicious code in dandh8112 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 06f2bb5fabeb29dfa7cd1921c6c28f491ec017dddaae26b427f956b1f5f3c288 The package dandh8112 was found to contain malicious code. Source: ghsa-malware 439693dc034f10b79277c48f7d3457adc09a623d5d067afa83543f5393f8825e Any...
MAL-2025-49354 Malicious code in tailwind-fa-bridge (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a756b361c16672e64c2930a0808516a83e75a9b441f30ac8e9e933a2b0a89858 The package tailwind-fa-bridge was found to contain malicious code. Source: ghsa-malware...
Malicious code in vity-toolkit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9fd2e751d57f4a04b6019488c79debf3467879ee63c322f22ebf35544584cff6 The package vity-toolkit was found to contain malicious code. Source: ghsa-malware bb4930932127303392cd175222ad1777bd0119cbea931b6bfb68c8913bbb0a40 A...
Malicious code in soxhob-client (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f363c792232ff069ace1465cb749f1af3aaecf8dfac04cfd380891e6e92caec9 The package soxhob-client was found to contain malicious code. Source: ghsa-malware f87ebbd60bec6fb45dfb478c7a9bd94336690f19c4870e5ac5766c9d864a75ff...
MAL-2025-48962 Malicious code in @gitlab-lsp/pkg-1 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7df0575a200975029552912084573cf0331e1cf02ccad8e8fd7e024536143ef8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @aio-commerce-sdk/config-typescript (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 85b2c7fad2af3e611f7fe4d8399529e1b897e4ca8838e1a5db0a2c61acb4d998 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-49023 Malicious code in mourner (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f18af0d378a61144c08db151e716049e3382641abab5eb75718aca6c4fb19d00 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48987 Malicious code in bernie-core (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c3739c86097b3910a94bc6371b69d1febbec4d9b8849ec05212f62ec35cb163a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in fzreo-trading-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f88d8fd4cc0828b828f3a6fe64daf9b8dc84c84729972d2c17de5559ab96c653 The package fzreo-trading-sdk was found to contain malicious code. Source: ghsa-malware...
Malicious code in @chatgptclaude_club/claude-code (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9a4754ec4fdda490eb8df83dba70a4eca2d697b1db00133e748d26661ebc17a4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48594 Malicious code in gamenodev21 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware eed42bff5f057d49a644923b46ba868c04890e51c77dffc911c3aaa0be4e0640 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in mtls-ambassador (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7751747bc3d849e8a9b44fe993f8e2e3a5779f8c940573453433084eb4d3a07b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in debug-mj (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9f60289f1a0f9296cf8aa9ed744c256c0963a95dc751ff52a708d2676d14825a Any computer that has this package installed or running should be considered...
Malicious code in internallib_v838 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d9a033080221d18397e6453d359fc3e59ebab68f195bd8faa9def63ff1426ca8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48274 Malicious code in cbt-gs-switcher-library (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 51e281e2aff0b1c284640210a317cb5796b2cfb60eccbb61d04d4cfe8941d3b2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in mad-3.0.1.2.2.8. (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 22a95aaaa7fd9efb994a7a1fc912db0181f2efa04105dd37a1a368bab0cff576 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...