MAL-2025-6007 Malicious code in groq-mcp (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 f310f1669db9ce74e36d92085a6a67098f7c0ee086d8da5998b709d565a3fe12 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

MAL-2025-6209 Malicious code in marcom-ac-console (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 64d378ac078f27f1f0357746b50307c933999c2eb82b5c9c7a7a6b0645910749 The OpenSSF Package Analysis project identified 'marcom-ac-console' @ 1.0.5 npm as malicious. It is considered malicious because: - The package...

MAL-2025-5983 Malicious code in npmdeco (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c7c7110ed52ce1bc50ece55d4ed6f010f23d0ec5383c3b482208028e97eeab9c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-5981 Malicious code in @hub-la/payments-proto (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 788034b39545c288d45be9fa12e76155c224c8537b86eed7b0aaf0cf4e501908 The OpenSSF Package Analysis project identified...

MAL-2025-5846 Malicious code in yandex-metrica (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5c347c0cd149f59328faebe4ea3eaf82b02f9eeb1971ee50b89880ccff4620e0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in workspace-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 6337f633e71ac4bbdd2541a6ff172f67246451a691838940e3578c7c7ba4ee18 The OpenSSF Package Analysis project identified 'workspace-loader' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...

MAL-2025-6210 Malicious code in mgz-testpkg (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis c82f0658f0d08613ec76f5066bad323001a5a95afc35b8befc4a34c82a68e0a7 The OpenSSF Package Analysis project identified 'mgz-testpkg' @ 1.0.2 npm as malicious. It is considered malicious because: - The package...

MAL-2025-5844 Malicious code in ngf-gov-hr-navbar (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 85f2baa5c5673490af93199349e0ef54f7c581115b1fa83d6df2c9e18430e031 The OpenSSF Package Analysis project identified 'ngf-gov-hr-navbar' @...

MAL-2025-5841 Malicious code in xpvnsulc (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 88e144cce5913bd8b818e88d9308fd1c10c0c7d58d905c8e570425d7c5f7ec49 Any computer that has this package installed or running should be considered...

MAL-2025-6212 Malicious code in prospects (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c3937cc0353b0952f14ff2d9e68216f857e4ffc01f688f600948c6d1b234915a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-5837 Malicious code in test-package-avinav (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 db665678ac908b6f9aa76ef069759ebd70b62c901a6f840b765ba7cac299c423 During installation, a heavily obfuscated code is executed. Exact behaviour unclear --- Category: MALICIOUS - The campaign has clearly malicious intent, like...

MAL-2025-5832 Malicious code in @pwa-ib/eslint-plugin-compat (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 4d551b7911958e1076f15bbee358feaed7da5b9aea78210268e6e68261822c7a The OpenSSF Package Analysis project identified '@pwa-ib/eslint-plugin-compat' @ 1.99.99 npm as malicious. It is considered malicious because: -...

MAL-2025-5756 Malicious code in yoomoney-github-landing (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 14e08c44a9dd94a4287271b74da8909f742693755d7bc3b79fd186cf5163ea9b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-5762 Malicious code in vault-wallet-toolkit (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 038f9aa24c411c91137d75c5519d3628da39a251c2a955d2b651748359a746f0 Any computer that has this package installed or running should be considered...

MAL-2025-5650 Malicious code in @virtru-private/infer-web-env (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 35f7301737b56efc07185c2e65de66ae841fe901ca967f2ad2d7406d9379cdcc The OpenSSF Package Analysis project identified '@virtru-private/infer-web-env' @ 99.9.9 npm as malicious. It is considered malicious because: -...

MAL-2025-5641 Malicious code in consgraphql (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1f1d324f3e26c4f3e05c328b7637cd3e88e8b2878fbc9df6cf039c2c5516332b Any computer that has this package installed or running should be considered...

MAL-2025-5625 Malicious code in plugin-meta-extractor (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8afae718387e4b2dfc69c8abec1fa53bf680355cc9e412cbeedfa77c47ac2f6b Any computer that has this package installed or running should be considered...

MAL-2025-5624 Malicious code in cmr-graphql (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b805bd73c447ee03b3330e1a1ce27c4b8edef17d58376cd0a35c151f7c1250a0 Any computer that has this package installed or running should be considered...

MAL-2025-5656 Malicious code in malinssx (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 ec1d3e0940a3c37917b528689547d3728f9f3d0b9e408acc7dcc67435c09d2b0 The only goal of the package is to execute a webhook or a suspicious file during installation. Closely related to 2025-07-0x9xnx - created after previous...

MAL-2025-5654 Malicious code in malicus (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 d151385056670ff22bfb80dc356c10ff622a77e115f8d81ee5f066220e05fda1 The only goal of the package is to execute a webhook or a suspicious file during installation. Closely related to 2025-07-0x9xnx - created after previous...