Malicious code in mad-2.0.1.2.2.8. (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 81f7b7f7c3402d257f9f14e953189f25bcb44722a79c99b2d68449796a3896d4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in mad-2.0.2.2.2.8. (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a417a96fb1a489ed21a97883097356cc05d7f014eee21d941bc0cf6a4541c036 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-48066 Malicious code in redirect-nqfhsn (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2820bbda7f029c1b12a66e234e3b0896b14a6643e1f76f090854c7cc98ec5c10 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-48068 Malicious code in redirect-p8ris1 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 04da7ed54a66a21cd724557550afeac1590a329330a33c3c0b5bbf897e250c0e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-48082 Malicious code in storefront-search-as-you-type (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c0e0258430f6ebc7401b9e28828d8433806e188a230f2a687fa206651d72978c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in python-dotenv (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6bf133022adafc8949f152dac2e99730580ca64a570cf0aeae36b7f81f3c1db9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-47995 Malicious code in kios (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3d1a6fd29b8a60173e1e93d44f68fb2a9acb13751e32bc0293a3ac9d72ac1c9b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in acme-auth-utils-2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 381bf10b2439022678c5ee610a1ef1f66a302de861937b7237aaafb4e83d7aba Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in oxrvxxxxxaslllcaj (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cbb43c3aa5e1fe9b33fc7a3c3a439ef7edd69817df8984551602b834f7b64584 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-48011 Malicious code in vishu_transitive_fn (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 89f90df0189636fa1988950e054ba609b79142c54a65e9cf18806db68cebf5d3 Any computer that has this package installed or running should be considered...

EUVD-2023-28591

Malicious code in bioql PyPI...

MAL-2025-47392 Malicious code in @things-factory/shell (npm)

The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2ebd494f09184269de61b62501f8b32bfc56c353807f7e7356cecc35c5ab1346 Any computer that has this package installed or running should be considered fully compromised. All...

Malicious code in printjs-rpk (npm)

The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a285689b6f342d1a7b147b599c1ede8091b47dddc68bcf77c95aa38232acbb05 Any computer that has this package installed or running should be considered fully compromised. All...

Malicious code in ember-velcro (npm)

The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware eb2c22cbb7ab559c0ac1e61418ae224e561beacb9571166240b4c5249a098dbb Any computer that has this package installed or running should be considered fully compromised. All...

Malicious code in @crowdstrike/falcon-shoelace (npm)

postinstall script executes bundle.js. bundle.js triggers unsignedbitwisemathexcess YARA rule. Suspicious behavior indicates malware. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 035c35169c1f3c6c939e3237ce0bb606645b05601db61892b5d54cbeea095b57 Any computer that h...

MAL-2025-47317 Malicious code in html-to-base64-image (npm)

The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 344ae7d30a0afbb65b792da96ef3c9756e42e9fc82a6204b5f9e1ab0ce925a4c Any computer that has this package installed or running should be considered fully compromised. All...

MAL-2025-47280 Malicious code in @teselagen/ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 63813f363810c8dc88bfa35fbd3a365de9e23c00d5543cee6ef87dfb6e61b5a2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in @nativescript-community/ui-drawer (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 654a91a470f375a9cb4e947721e019c839d4da439a16ad0308c6d183ada0bb55 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-47110 Malicious code in @aledade-org/dsi (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9097b2177de180fece5d0c6bcc6c630315777466732e173c20ca8b22bdd24dc0 Any computer that has this package installed or running should be considered...

MAL-2025-47061 Malicious code in gram-utilz (npm)

The package gram-utilz was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f7c772fd2d6b9f919249def32fb96f26a08cf5bf3ebf008ab12736e774021864 Any computer that has this package installed or running should be considered fully compromise...