664 matches found
MAL-2023-1419 Malicious code in test-test-test-leys-check (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis a0f1b447a06ae8cd034c08db769374bbc319460cc98a553bfc472d87ca1ef6cc The OpenSSF Package Analysis project identified 'test-test-test-leys-check' @ 9.9.9 pypi as malicious. It is considered malicious because: - The...
MAL-2023-1292 Malicious code in seafoam-desktop (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 11b7b515412cb320d382cffb4a3abe4fa232556d7db6ac3dde904bd295b279a3 The OpenSSF Package Analysis project identified 'seafoam-desktop' @ 10.0.0 npm as malicious. It is considered malicious because: - The package...
MAL-2023-1311 Malicious code in suncorp-styleguide-react-components (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1b6a39ac171632a984b8ac8c3e53ab935e47753ac7e0df7161daa7bc23f8e08d The OpenSSF Package Analysis project identified 'suncorp-styleguide-react-components' @ 102.0.0 npm as malicious. It is considered malicious...
MAL-2023-1120 Malicious code in back-alley (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 83d1eb07b6ba84ecc98bdd4ad2a1313b540e69509c08d8d66f4b2fe54a1986a7 The OpenSSF Package Analysis project identified 'back-alley' @ 1.1.0 npm as malicious. It is considered malicious because: - The package...
MAL-2023-1429 Malicious code in modified_bayes (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1c5711b3c10ba19ca7c68581b9cd246029ba621b35c0371e4a043d69050b9363 The OpenSSF Package Analysis project identified 'modifiedbayes' @ 10.1.0 rubygems as malicious. It is considered malicious because: - The packag...
MAL-2023-1121 Malicious code in ban-notifier4 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 40f50b4925a587e36b4236377850d644915a64a9183b4f152ac4f99cefffd557 The OpenSSF Package Analysis project identified 'ban-notifier4' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...
MAL-2023-1115 Malicious code in api-code-capture-chrome-extension (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis f1e44f89c4e3876559f46852c9a652c510df9384be3ffd0180e36f9fd64e8cfe The OpenSSF Package Analysis project identified 'api-code-capture-chrome-extension' @ 20.0.1 npm as malicious. It is considered malicious becaus...
MAL-2023-1337 Malicious code in virgil-spring-boot-starter (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1d7b81762635da58744d7567d3ac4b1bf12da5d3c72070a9d2260d40463fcdbb The OpenSSF Package Analysis project identified 'virgil-spring-boot-starter' @ 20.0.0 npm as malicious. It is considered malicious because: - Th...
MAL-2023-1342 Malicious code in webpack-cli.legacy (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 22737261df7f74819a3f3f968e6516db5e37f6621827d6148b290f7650b9992f The OpenSSF Package Analysis project identified 'webpack-cli.legacy' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...
MAL-2023-1282 Malicious code in react-test-renderer-17 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 44a1a6575888ff4c59c07150c3211aa61af227fb9d17025b72af93ba65153098 The OpenSSF Package Analysis project identified 'react-test-renderer-17' @ 1.0.0 npm as malicious. It is considered malicious because: - The...
MAL-2023-1316 Malicious code in tempomati-omega-5-emcuf5 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 6f86820db1cc72b3ab2076578417815de7e0bc83b54e954f68b41a7adf28dd66 The OpenSSF Package Analysis project identified 'tempomati-omega-5-emcuf5' @ 1.0.1 npm as malicious. It is considered malicious because: - The...
MAL-2023-1143 Malicious code in compositionupdate (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 609e73b696d2a84c8c2169afde78694231815b46be300710ddf913fed7c63d1b The OpenSSF Package Analysis project identified 'compositionupdate' @ 88.8.8 npm as malicious. It is considered malicious because: - The package...
MAL-2023-5 Malicious code in eslint-plugin-indeed (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis cd3cf0dfdda3ea0bf705d385efb05c56b971a408c4a0dceef3771d2e474a33e0 The OpenSSF Package Analysis project identified 'eslint-plugin-indeed' @ 99.99.9 npm as malicious. It is considered malicious because: - The...
MAL-2023-1155 Malicious code in dist-web (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis ff355bd5f2422ce630aeb0652869d4bdaa8f3f18cf576fc60a76588f3acf36b4 The OpenSSF Package Analysis project identified 'dist-web' @ 99.1.1 npm as malicious. It is considered malicious because: - The package...
MAL-2023-1142 Malicious code in commentrating (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 87db588ebd8e7a42cbbbbf7fc21caa36fc553172a0ff4c4e9a58ce9354d62e7f The OpenSSF Package Analysis project identified 'commentrating' @ 99.9.1 npm as malicious. It is considered malicious because: - The package...
MAL-2023-1278 Malicious code in rb-notification-banner (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis faed09cda269c58908aa898798259bd292fcce98a8f5a60f486a4c26bb84d15a The OpenSSF Package Analysis project identified 'rb-notification-banner' @ 1.0.0 npm as malicious. It is considered malicious because: - The...
MAL-2023-1163 Malicious code in donuts.node-build (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 6b8d6fee5827de9688cc9b83812dc32e54e33531a0bd2fd179dc3e2935564dc7 The OpenSSF Package Analysis project identified 'donuts.node-build' @ 99.99.104 npm as malicious. It is considered malicious because: - The...
MAL-2023-1161 Malicious code in documentation-ably-realtime (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 3f6bf5586a7addf25073456bb7b754dafa5c124cc264cb37b2005088598555ee The OpenSSF Package Analysis project identified 'documentation-ably-realtime' @ 1.0.2 npm as malicious. It is considered malicious because: - Th...
MAL-2023-1422 Malicious code in yc-as-client (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 9df89f5f0260f38e93635cc5df99e7ea267d4c07f25e1446a49c08fdf21befe7 The OpenSSF Package Analysis project identified 'yc-as-client' @ 11.11.3 pypi as malicious. It is considered malicious because: - The package...
MAL-2023-1279 Malicious code in react-div-100vh-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 9b9718c1f5170d44298bb0ef93d114e752ea42231e924e5c895add2f21e3c18a The OpenSSF Package Analysis project identified 'react-div-100vh-test' @ 9.0.0 npm as malicious. It is considered malicious because: - The packa...