MAL-2024-11897 Malicious code in yir-image-gen (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 6cf1af517e2c58b4cae223cb5d746eed91636fca7b9843a427577a641e12a0f7 The OpenSSF Package Analysis project identified 'yir-image-gen' @ 2.0.0 npm as malicious. It is considered malicious because: - The package...

MAL-2024-11895 Malicious code in pai-web-components (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 8b6dc3e380e435ff7d74a44ec8841c1577a1bd74c03ef3dc368e2514e485d8fc The OpenSSF Package Analysis project identified 'pai-web-components' @ 99.99.99 npm as malicious. It is considered malicious because: - The...

MAL-2024-11893 Malicious code in vue-cli-plugin-lint-staged (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis cb4c725718310cb969ec6171fad585bea2b58fc7d4460be6b706cb8529356d7a The OpenSSF Package Analysis project identified 'vue-cli-plugin-lint-staged' @ 9.9.7 npm as malicious. It is considered malicious because: - The...

MAL-2024-11892 Malicious code in vercel-repros (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 61ab9d6c179c19b7bd4e20a4c65605457887724fa5f2bd4e0abfcdea66f7ff2f The OpenSSF Package Analysis project identified 'vercel-repros' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...

MAL-2024-11909 Malicious code in tsanjint (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 51bc4162c9661fcf380821e0b575282ec5c1e6d7a6732cc427c637a581d909e1 The OpenSSF Package Analysis project identified 'tsanjint' @ 1.0.0 npm as malicious. It is considered malicious because: - The package executes...

MAL-2024-11888 Malicious code in @saferpay/eslint-config-base (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 49038c65a69ff50fde7f32068fe7d4705c0ff7424bd0e86e6f87ab5593a99949 The OpenSSF Package Analysis project identified '@saferpay/eslint-config-base' @ 5.9.2 npm as malicious. It is considered malicious because: - T...

MAL-2024-11891 Malicious code in @saferpay/react-library (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis bf4cc2b21097670e4c1c216967552f761f10ded3eb65a4a4b705aa0a5d6943e6 The OpenSSF Package Analysis project identified '@saferpay/react-library' @ 5.9.2 npm as malicious. It is considered malicious because: - The...

MAL-2024-11890 Malicious code in @saferpay/logging (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 00760b75ef6449f1f4125794bd96880aae15b6a332fb2103a23c849e0d0d01f2 The OpenSSF Package Analysis project identified '@saferpay/logging' @ 5.9.1 npm as malicious. It is considered malicious because: - The package...

MAL-2024-11884 Malicious code in start-decent (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 74681df6bc6b8b3247624569b8632e201a6fac47376cc8561d59fccc697d83ab The OpenSSF Package Analysis project identified 'start-decent' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...

MAL-2024-11881 Malicious code in pokedex-vue3 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 23c03b4e03986cba75894fb0016bc2e1feb0c72ef2c06287030498b8f7a48ea1 The OpenSSF Package Analysis project identified 'pokedex-vue3' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...

MAL-2024-11874 Malicious code in react-vis-website (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis add23f4d15e6249dcdf1487e1ba15a538376d6c820e7afecf316deaf47dbd959 The OpenSSF Package Analysis project identified 'react-vis-website' @ 1.1.0 npm as malicious. It is considered malicious because: - The package...

Malicious code in nrql-tutorial (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis c05f09c8ffa1c0d481983b42dad8d40299cd5eb0b37e0f1d61685cd349a12c58 The OpenSSF Package Analysis project identified 'nrql-tutorial' @ 1.7.5 npm as malicious. It is considered malicious because: - The package...

MAL-2024-11867 Malicious code in 32red-connect (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0d6fd8b74aa90de644864280c7ff35c25fb0c3c059d18172022a417da92eacd3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11855 Malicious code in 000webhost-cloud (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e08b60d5a52c01bda8d2c896c137f380ee01c84b2cae31f0c367f67fc3db57c3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11854 Malicious code in 000webhost-checkout (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 264677b0730aa71c63a8f92c073c2b8b7a14b4a54d291ebbe883161a4f8af43f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11849 Malicious code in 000webhost-analytics (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ebaa53f52123e742b45f9522b1d34050c780aef52753f43915cab93f159243d9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11848 Malicious code in 000webhost-admin (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e0ab4aef1fc278a5d05573acaa29e2ae568c62a86e14c090199f33ae2aeaddeb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11846 Malicious code in stripe-internal (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 37cffd89914421e6ec876ab385cbb856e29b04d39b9a37f04de91f0f8a0bfa1d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11845 Malicious code in ml-interactive-data-augmentation (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e20810134f19a11553a575cd601700601cf374b00626760c86d6c3905cb0113b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11843 Malicious code in solhint-plugin-openzeppelin (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis f4a4cea0f7210535e002b329fb3bd7a547d17cac3f0db1831009855d61000a0a The OpenSSF Package Analysis project identified 'solhint-plugin-openzeppelin' @ 99.99.99 npm as malicious. It is considered malicious because: -...