Malicious code in ec2-github-runner (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1c7ca0d5642601c1f68fbd89dabf82a89747d310ed0196ea76061981bed79fd3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in dt-internal-linter (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a5c720ae7505ae2c4d74c0ce8cea7fdb4961f4de5c0fddc8c485c7b66c87097d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in nmig (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d6e6f1ec1132797f243edb4d2c3283331fbc9e71087b281dac1b1bd42dbb9a52 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-5765 Malicious code in azure-prometheus-datasource (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 47fd9dad2205644dc2dc1629b5ba8933f2243510d26fca0bb35e2fb3f1e602a4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-5777 Malicious code in grafana-csv-datasource (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e9ad716a5ea97debbbad7d3b10d1b4a28c71a2e2b1143a6733443cc211de350f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-5763 Malicious code in astradb-datasource (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 74096e53a09b27153d49c9d4e25426156f25ff82dd4c2f4abfd88ba3651f8a78 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in homiersla (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 18b688a5a2d22b21d1e643d311c8364a0d6d26d28c537c6e4fbf1a00f7dc12ca Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-5751 Malicious code in jwoiesk11 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8272ab239b8e1ffc477bd4ffb90538ddeb7d1cd11f6bba6b8ee8a396aeafdb61 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in grafana-json-datasource (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0df63e5033b70f866f957f8443b533f09684b459897700f9ed44542d23b8fe82 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in aspnetcore-reacy-sample-app (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4e2b1e88eb171b5da54b5badc189d571ad6cfde7115103930a103f15f067c398 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-5712 Malicious code in oneapi-analysis-configurator (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 62a408f2d5e2b67773b97c7a264f55597c4afd65c8bd0858394b6fbff152ec17 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in cli-wasm (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e681236ac61ae5750fc09fb6b554532ef05f7dba07c824477fd8940d95387957 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-5699 Malicious code in haha-sana (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d94333a699bc404222efee057cfa9fb0a098160612cbb2f645065f273f841214 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in sync365 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2003136f074fe6e477c1a6a3458258fb4a9b375093b0520cafc082e4ff537f39 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-5675 Malicious code in cdk8s-kbld (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e6be6c2728fc61eee980d78a40e52500b12a5d5c28f128b1fc21a7d18730c806 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-5740 Malicious code in your-test-renderer (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8a1133758e2658958e3fbaaaee2db0c856e5ba745f18589b79e6c04859207dd7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-5663 Malicious code in @jmerhi-atl/evil (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 91620aae25b612bc0174c38ae40a4b87860a8070824a4fbb447968986ad8c368 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in jsonskipy (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 825aeade17635320d2922155fc8e36ab7810c8cd83aa62a8521613534dc52e0d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-5742 Malicious code in zplex (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4ad25f43dff85fb90079f71e1416944834a6e7244faf6a1c75aa20fe17661db3 Any computer that has this package installed or running should be considered...

Malicious code in nonsensetest (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 37ff18d1f339dc2f014b88e051c067ad240533616538c4684d8666f02568d930 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...