224 matches found
Malicious code in @lessondesk/eslint-config (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ef9fcb377fe99dad0e34ec63a5ac929adfc5d8be48e49d330d4785e1d2a6a7f The package @lessondesk/eslint-config was found to contain malicious code. Source: ghsa-malware...
MAL-2025-191135 Malicious code in normal-store (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3f3cc821206cbfa969e8f4e3472a09caf43736b8e70d4ec80ed20931b64406b8 The package normal-store was found to contain malicious code. Source: ghsa-malware 1e1d6a2537e74912ec3831bf85e49e8ba908fc28838ec60c07f7218717ba36ae A...
MAL-2025-190970 Malicious code in ito-button (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b9cf5ba13f206c5d1d757c2cf05286ee560131e1fcb7075df3f36ebb148077f3 The package ito-button was found to contain malicious code. Source: ghsa-malware 03f8f135ee783bb27854daa06728ae760fbffe751ad120740d501a29f4b1a68a Any...
Malicious code in @actbase/react-native-less-transformer (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 06f669b015d3df7c500b192e927f2890c45ad45dafa608100da2146dca598efa The package @actbase/react-native-less-transformer was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190764 Malicious code in atrix (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c8da24292f4db1ed3effb33c2c59b8af736f288754619eb8904e12b77cab37dc The package atrix was found to contain malicious code. Source: ghsa-malware 892133ca29450416a2608e73a523b5113e423356a6f8c0098602e7c5173b5121 Any...
Malicious code in @asyncapi/cli (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45b13eec1644f2d38922b7e61732a64ae6ee0d71810232ff15c95a3290de465d The package @asyncapi/cli was found to contain malicious code. Source: ghsa-malware 99e5bdb2a7d429f7e01403c432963826b244c3bed02a5a877ace1307b5fee3ad...
MAL-2025-149903 Malicious code in format-fns (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 526920f308cc3493a6a3bc9f9e6c7869e0d79392a5ad4c3d20853f93c1be3347 The package format-fns was found to contain malicious code. Source: ghsa-malware a2305cdbb291326c8e91c15e88648a66dff9f0cdcee605ff604ec85ef226b91a Any...
Malicious code in axis-tools (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 09aeea2ea73dbe2f884c0231d608d337880bb8bfd99f38837bb012f8f952eba1 The package axis-tools was found to contain malicious code. Source: ghsa-malware aa8f4e19cbedf81f11461e5e9017bd02d7135a5f126ed59b58b3669d6a7c8156 Any...
Malicious code in tailwindcss-utility (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5dc855ea3b9e7fe55f82bc9c967ae3e8789666f58f0a9504975e905a164c5af2 The package tailwindcss-utility was found to contain malicious code. Source: ghsa-malware...
Malicious code in ft-flow (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c048d30efedaea5fdd0efeaa12f5ac0fc2498a9a3ff8698af6c96566e5542825 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48927 Malicious code in func-analysist (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 80289c38bf711f5ac60787399d199be29ca23f0695b947ee46825c9a3ce226bf The package func-analysist was found to contain malicious code. Source: ghsa-malware bb257e8ae472109cbe751b79ea838ddb8a0272301fac276ca6ade81aaa72b7d9...
MAL-2025-48929 Malicious code in graphnet (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 022ef4190a3153420248771034a085983347a98a7bbd3be8ce4eaf80b0d0dfd8 The package graphnet was found to contain malicious code. Source: ghsa-malware f027c14837595ab3595469caa7197e8cdf4f3288a53a4c1fbf970cbb7cd6018d Any...
MAL-2025-48774 Malicious code in badgekit-api-client (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 845af37fdbb4804eebee38f23aa25a4147f6e1d3a5e908d5d3bbe855105da3a3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48534 Malicious code in internallib_v808 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bdc267dc80d71e5150428ae279537b44916538d5b6e8d47b236ee01902ef1516 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in scr-file-theme (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4e14437e272ed4d4e6bb48ac4f6b3e3cce3f5838363b09ec1e6e95400dd5812d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48181 Malicious code in redirect-kz5pf4 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2bc86fafc96a4a904d66dff816670e4e6fab529a6f1cc9b9179bcd6137f12f2f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48224 Malicious code in redirect-uplctp (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3e78d0574b0be8d00d636478b373f3cf1e8c591eb69245a667bc3e556d886620 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48198 Malicious code in redirect-nq70u6 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 099d83c25e6a8662b90ff95da62e95d6118eb1d71b1ed785e186f69054ae7f66 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48096 Malicious code in @testcarrot/supply10 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8be0caf56c8bfb459fe5af9909f2c71799d54ea1571de12424e205edd9e37c76 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in func-analyst (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware acdf906e62052075f99f8b6d12353e90718603e428f036750156e9a47c16b61c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...