Malicious code in iceberg-api (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 80881b9c9051ea4744eeccd8038c44bb7bf6fd18b1535d8319cdf556cca76282 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in gunicorn (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 269ac7e0cc85fe2e3078f51d0b39078670681500d705eb403172aead25d9ca18 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-4832 Malicious code in gunicorn (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 269ac7e0cc85fe2e3078f51d0b39078670681500d705eb403172aead25d9ca18 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-4825 Malicious code in email-ext (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c4c79355714fdd4b93c7a36e4f249eee1ce00120cb74835c536968d2b6a2e3ba Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-4822 Malicious code in dplyr (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cdf19d4b885e033c180e0529d82bf2f17cf47d1db3d73421f6868366ae6da15f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in boost-static-assert (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e5ea6d07c816f16b0ce7ce7e7b952fa013034be54604e072cd3c500d9cc75e48 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-4812 Malicious code in apple-appstore-server-library (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4ffc44075c7a6123e6fd516c9e8c1abbd98b481d26ae67ee10e814bec86bbe7a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in third-party-dep-a (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware dcc20155246302fea26b0bb40126bd6b917414a68ccedf962a12e246f3696f38 Any computer that has this package installed or running should be considered...

Malicious code in sess-mgmt (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 29c16cd4681ce57c3517c8eb02325b85b1d23b80065b782616b42f03b524a289 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in bank-auth (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4f0763ca6a35d86ac26d0d79bf3170ea38a642062f030c19ac17589065a5e1c3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in nethereum-helper-utils (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d1113e69bfa84d519a1db8e7d38e9f66170f41d55f60398de2f057c298838d76 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in chatbox-fca-remake (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 83a5b117803c27e7a6bb055ed45b86878c6edf34dea10fa6c638486c656c6ec8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-4681 Malicious code in daenax (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3178f178bdbdd66d641b33909e4d04c304ec1b92b0bf5196a23abe7683d3d30f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-4695 Malicious code in system-health-sync-api (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 13c337e149bd36fcd54891e550bf7fdb7c1dc36b1bfc1b06e0b1427851d4adde Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-4692 Malicious code in portfolio-config-manager-mongo (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b7313dd72cd35e9b2cc754bd7b41842071deb31b3be1bef658e61241e6bca17e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in plugin-svg-icons (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 824299b29c64a19455bcdc235b9c2726b1ae00b364f8a549bb972a1be842eb43 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-4656 Malicious code in remote-actions (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 602ccb0c9280efaed9bc494cf89db45c8fd4d77619a8b621c339d44dc6479bf5 Any computer that has this package installed or running should be considered...

Malicious code in staking-eth (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4731478e6aab60180622e956a2bb2f96e9fc476bad9c3e95b18183e8cb7ccbe2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-4635 Malicious code in yaml-mcp-wrapper (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 63f698f000e6c4702e971dcd3923f64bd9039710fde38e7329b170ba0266ac01 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-4595 Malicious code in express-authgen (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b288b33e1c8cf62fa86cc3a42c139bde6cc4674aec2cc0327ca503b64daf2a4f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...