MAL-2025-47892 Malicious code in pycodestyle (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c8041596cf0ce7d592005bc7b6e2a389f3becf1c4f14864a8b2951c93f29711b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in lovable-js (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 903b816cc2c837a614d951c1cbb34aa264a93001e84b0c642687025ed9793e64 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in lovable-react (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 55d5b437f91405ceb1fe18cde50960c5b8ad03910dede2cbdd179627eed2d82e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in ancestry-axios (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 71501ecab204074038c46b64372fcfd400a8f1b7375edff35e29d5b6bbe7500a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in vite-plugin-parse-js (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f0c3c9412f03ac4be0712f183133c219efac17d93edf28bf821d9dae53b7856e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-47836 Malicious code in vite-next-logger (npm)

The package vite-next-logger was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b63f6a228b94e3b3c06e0d3e65937daa9e46eb2a5f95296fc24823796fab6fb3 Any computer that has this package installed or running should be considered fully...

Malicious code in mongoose-ci (npm)

The package mongoose-ci was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8d77c10d87ab8d987038afabe734d791e7d82eb5984a1e8789dbca6cc1e5063e Any computer that has this package installed or running should be considered fully...

MAL-2025-47827 Malicious code in mongodb-ci (npm)

The package mongodb-ci was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d9b911aab71cd920347a53724f3e83adcf499a82d3c5ae4a096bd972282ef97b Any computer that has this package installed or running should be considered fully compromise...

Malicious code in my-test-module-first-vespero1017-santiago (npm)

The package my-test-module-first-vespero1017-santiago was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 33810a758a26fa95007474f7ff42b136af0c4dddd650622180f655a72748472d Any computer that has this package installed or running should...

Malicious code in @sev-ui-verse/contact-models (npm)

The package @sev-ui-verse/contact-models was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware eafe3e022be23739d479cdfe1e577a7e5b593a528063ce67b8fa1beb911fb2e0 Any computer that has this package installed or running should be considere...

Malicious code in @sev-ui-verse/config-service (npm)

The package @sev-ui-verse/config-service was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 188aa603d30650e09cc52a7e6d86df9d9fa9e4bce6239596a6ee4a7a75a968bf Any computer that has this package installed or running should be considere...

Malicious code in sha256-validation-xyz (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d087a7f065c7d1c6612320e8fc3d19957b0768a27ea56d1c6849c32193941829 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in isood (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 95552c81d5afcf7c02c3015baf503fa6c6fd1e22457eb2ac421aec6353dd50da Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Realtek SD Card Reader Driver Security Update

Potential vulnerabilities have been identified in the HP PC products that are configured with certain Realtek SD card readers, which might allow escalation of privilege or information disclosure. Updated Realtek SD card reader drivers have been released for mitigation. Realtek has released update...

Malicious code in tailwind-classes-overrides (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3533ded19e56068694976a22ebcd933310fdb82d4b79857298b09a3f5e30389b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in react-thunk-log (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 929d9268bc92055751c7f10bae27b10942586f07c6fb81b6740905a7b067604d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-47486 Malicious code in logger-pino (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e272a479809e73e22ac57389e876150a90f12307651d65b68e075188185abc68 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in eslint-config-detector (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9c532e5d9ed3c3afdaf7a4a59234c132c6176b491fc96676828c4f0dd5eb415c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in dowload_ebok_la_tigre_azzurra_by_nicolas_barreau_bkcek (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8b5287a522154683f0d46492e8eadd688fe50efe83c0e02bea2c5ad23463eb4c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in dowload_ebok_one_punch_man_vol_11_by_one_dk86i (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0cb01544adbf0f48040e8e3e2a8987ed710aeb8e775d522804cd79efdb49cb13 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...