964 matches found
Malicious code in get-fonts (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d55d952f3fb507a89362a1535e7cf7d781b6f26e82c7130ca008af612bfddf4 The package get-fonts was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in trae-browser-inspect (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2fbd2b8603f95aa744b92e1f624c31c4afc4dcb7ef634096a331302462b45e1f The package trae-browser-inspect was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in react-markdown-canvas (npm)
Malicious package due to data exfiltration via Discord webhook on install. Collects IP, hostname, and date without consent. --- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4123db6526d8c37f99fa33e2524edc97922efef6b1605dc0a8acdbf41e76cc77 The package...
MAL-2026-994 Malicious code in vl-ui-code-preview (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5abf0716d5a814e3cd0ca1da245819d81f5238adb1911513d88b36825c7a99be The package vl-ui-code-preview was found to contain malicious code. Source: ossf-package-analysis...
MAL-2026-988 Malicious code in vl-ui-action-group (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 681eef2c6f7a9061c23f448a351fbf64b8d5302e6343f486e534c4a440b1e793 The package vl-ui-action-group was found to contain malicious code. Source: ossf-package-analysis...
MAL-2026-943 Malicious code in ethereums-lint (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bddbe5ea052b93fa04966b01c8302455e06311fd6015aaf9c76c07ba8c8f21c4 The package ethereums-lint was found to contain malicious code. Source: ghsa-malware 7671a5fea1c5f2b0118bd9981213bde2b546a4191a57acd041aed6d8560c0de6...
MAL-2026-874 Malicious code in google-search-result (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 7ada4db6050e81933dbf7a82d659e0793c79b0b8f771b3175b5ef4668563238a Generic campaign for all likely research / pentests, where the amount or art of collected data raises questions about the privacy, security and ethical side. -...
MAL-2026-839 Malicious code in search-newfrontier-podlet (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a6e41804eeb58691ca7b68763c0db9e48636ffeb9d7020d95bbc9d9e9aec6e76 The package search-newfrontier-podlet was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in @rsgweb/locale-tools (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b1882e2ffa769f9383127f2bfc582935b3bb1145e172eb6941a0276989a983f The package @rsgweb/locale-tools was found to contain malicious code. Source: ghsa-malware...
Malicious code in conp-dats-editor (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector adac2b3e811707a0113ec1484330ebada12a632966c81143eab49233e87cabbf The package conp-dats-editor was found to contain malicious code. Source: ossf-package-analysis...
MAL-2026-607 Malicious code in banquet-runtime-modules (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 236dee5bac395a6446685322fb3dadb454e4b7f7d43a132111a8392721fed206 The package banquet-runtime-modules was found to contain malicious code. Source: ghsa-malware...
Malicious code in solana-program (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 b7f4afe6d0bf016660b9bcd20e900d4d0504af8c3ac7f7dc69f20229ebcddb21 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in shopee-chat (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9ba8299c56484696126f8c09607e181246e87dd9c5f6a18cee51aec5d1f5ddd8 The package shopee-chat was found to contain malicious code. Source: ghsa-malware 052cf5d16ba6c226e8563598b02f71cc8f9bddb733c4074426526c4e860c66b8 An...
MAL-2026-199 Malicious code in vet-bones (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d3ce97e3af4cf9c82b0a51f4b693273ac59c6b1357b445b5613fbdcf7edec9a9 The package vet-bones was found to contain malicious code. Source: ghsa-malware 963e426141db06e18a04d497aed8ab05c8c6acfc76e6570d7c4a0bd2d81d7658 Any...
MAL-2026-168 Malicious code in @zuora-marketing/linting (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ddcfd1151af868e694a4a79307ce1284331ad88b8ff631651f3fd2c47fbf342a The package @zuora-marketing/linting was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in dstny-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b284da9586db3d25955c197277419786676841a572ee83eb99a463072eff3dec The package dstny-utils was found to contain malicious code. Source: ossf-package-analysis...
MAL-2026-3 Malicious code in rules-deployer (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 849a58d27ed0090633a72330c705b5849146aa1493961574c6a11dc758e28e34 The package rules-deployer was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in intl-tel-input-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ffcf244ee511453d176367146c8b6b5ee74d18e3037210dd63d19712c8647991 The package intl-tel-input-utils was found to contain malicious code. Source: ghsa-malware...
Malicious code in ugc-kit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ffd0991cb1cc7098930838b404210022aa2667d78f2884417f449d85e90fb12 The package ugc-kit was found to contain malicious code. Source: ghsa-malware 4e44ecda4e96910709480e50046146e482992e36fb2e8429211e1f653376d123 Any...
MAL-2025-192543 Malicious code in mw-proto-ts (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d9caaea5d17e80497fb4bce0a5b6ce695c9f917c1fee32da71e8ddaa324b79c2 The package mw-proto-ts was found to contain malicious code. Source: ghsa-malware c668f66eb7f8b165c5db43b6acfc4786387faedad258459906266866c843a4ed An...