664 matches found
Malicious code in details.app (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 736fc86403c03abaeee1f2b781d8a9f2e7972626546c7109631a8a0b7836a273 The OpenSSF Package Analysis project identified 'details.app' @ 1.2.4 npm as malicious. It is considered malicious because: - The package...
MAL-2023-8670 Malicious code in react-hook-form-latest (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f0cf2d07005ec432f85b35387c34d03f3229f9aaeeff947232ac2f58f6015853 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-8607 Malicious code in configcat-docs (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware aa83f7f79893be6fd5e1387e5464a8111c68512b8744756b77814e43a5679c8c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-8555 Malicious code in otnet-ory-network-tests (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 19a9ebfed32ec491b007a6c7e65f8ebae68d0acc3175b56442fa67e25fc916fe Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-8535 Malicious code in frontend-components-react-transpiled (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 463e9359f450d451e47eef2a46a82e6d6fe266ffa312c37239b9e2fda0a440fb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-8514 Malicious code in frontend-style-janus (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2950942ff85300d3cee0a0eed9f373eaaa043ef93e942089421c5a5586e209e1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-8515 Malicious code in discord-web-stream (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 79f33d84f92d16d56339b7efbd2ce2488e85ae2c177d33022e28026c4d74793e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-8501 Malicious code in jsii-calc-base (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis ca8b3646065a7003a827368b4c1ece0f6ab69346c13662e971a5cc0c223f6f13 The OpenSSF Package Analysis project identified 'jsii-calc-base' @ 0.0.1 npm as malicious. It is considered malicious because: - The package...
MAL-2023-8500 Malicious code in @atea/warranty-form (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0b073b818c3493a216e9d334b7f02042f6dbf9b7cea8bbf563b07b5af22952bb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-8486 Malicious code in @zscaler/ec-domain (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 31bceaac08bb6d621ea722590b8ba815799a6af81cc537fa0796ea7983b0f1d2 The OpenSSF Package Analysis project identified '@zscaler/ec-domain' @ 1.0.1 npm as malicious. It is considered malicious because: - The package...
MAL-2023-8413 Malicious code in xterm-addon-unicode-graphemes (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1e517091262ed409fb53011792754e279673a300f5e9abf2377eec73ed814f9c The OpenSSF Package Analysis project identified 'xterm-addon-unicode-graphemes' @ 6.0.6 npm as malicious. It is considered malicious because: -...
Malicious code in fadam-frontend (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 02e81c60df4cba570ba561c45c4e1f48fe798f16078ef1a7c2c601cdb3edf1f7 The OpenSSF Package Analysis project identified 'fadam-frontend' @ 101.0.0 npm as malicious. It is considered malicious because: - The package...
MAL-2023-8311 Malicious code in cohort_sdk_js-darwin-x64 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis abc50fadc1925fd27cf2d8f5e59cfe3992cf481db078f520b50ded4fc10f43c4 The OpenSSF Package Analysis project identified 'cohortsdkjs-darwin-x64' @ 1.0.1 npm as malicious. It is considered malicious because: - The...
MAL-2023-8307 Malicious code in narratives-from-tweets (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1570135eff60eea1dfd9ec7b66797d9454373263050b83c8ad90d2b7b37d71b6 The OpenSSF Package Analysis project identified 'narratives-from-tweets' @ 0.1 pypi as malicious. It is considered malicious because: - The...
MAL-2023-8255 Malicious code in csm27878 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 0055598a8a443f1bd67fa612291473dcb36ba6e1c9927df85775eea3d207de11 The OpenSSF Package Analysis project identified 'csm27878' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...
Malicious code in amhairc-web (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 13d3cfae40288462dfd8b822c93d41e65a99b5d16d94e0c3ba536eaf9b5ee0bd The OpenSSF Package Analysis project identified 'amhairc-web' @ 6.0.0 npm as malicious. It is considered malicious because: - The package execut...
MAL-2023-8163 Malicious code in symphony-monorepo (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1360bb9cfdd8afaf47d9444561048cc1f780fc6dd830a6d709320dc260bf7476 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-8103 Malicious code in sharinj-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis c38a5716c52678eb97b3b338a62f683268c28460657955b8ef607ef45c57a8cf The OpenSSF Package Analysis project identified 'sharinj-test' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...
MAL-2023-7979 Malicious code in visual_components (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 7289e2b3846c5d4eacbe709a4bd08a2e48688e587b810b9535c2275275dd2497 The OpenSSF Package Analysis project identified 'visualcomponents' @ 1.0.13 npm as malicious. It is considered malicious because: - The package...
MAL-2023-8051 Malicious code in jupiter-i18n (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a995253a2ee90fffb109184b329a5e1966f4e8b6cd8a67c131c60324495d8127 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...