Malicious code in resultstore-search-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 85736ae7368ae102434c7881aa59599a9d612a91f34c7b4f443f3604c21f60c8 The OpenSSF Package Analysis project identified 'resultstore-search-client' @ 1.0.1 npm as malicious. It is considered malicious because: - The...

MAL-2024-11839 Malicious code in rsd-monorepo (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f1ce32a78d33195ba4d402cad16a668c6dd0a2273f8e6a49b0ba2c65be6c88fd Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11836 Malicious code in action-mattermost-notify (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ff777c42ea9a589391478ecfd89da15137033e8ce5e0961b26f277f6e055c70e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11822 Malicious code in pobreiaia22 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f201a6e789edf5a6b86e429b07c01f4098e234a4860594f42d18fa8590259208 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11821 Malicious code in pipedream-curl (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis c8b5e047b6a8fdba2b0c3473a51edbdb9b488f22377ca3a66bb206193e7da7e5 The OpenSSF Package Analysis project identified 'pipedream-curl' @ 1.0.1 npm as malicious. It is considered malicious because: - The package...

MAL-2024-11800 Malicious code in yir-image-gen-asana-rce (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 050cc0b4f55e2e2b44e9eaeb0b6b269c8eab27bb007239d6fc7cb318e55f475d The OpenSSF Package Analysis project identified 'yir-image-gen-asana-rce' @ 1.0.0 npm as malicious. It is considered malicious because: - The...

MAL-2024-11798 Malicious code in testing-example-amnu (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 2e3e68fcb0722dd3025334d128515302686aff3ebed84afc0747731353153fff The OpenSSF Package Analysis project identified 'testing-example-amnu' @ 1.0.0 npm as malicious. It is considered malicious because: - The packa...

MAL-2024-11795 Malicious code in pacbot-spa (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2527f33d46883eac958d98baa0937139f8988ddc5f7803d5764921761ddf4e3c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11793 Malicious code in dextester123 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a26d87ee78544b18671f34fdbfc2bb566d83d78f917c88958141e6c335ba9242 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in @infoserver/gov-shared-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 5b54fde6a5995ffcf57ff5e926b8e0ddb11018b6a6107970a724342f83745df0 The OpenSSF Package Analysis project identified '@infoserver/gov-shared-ui' @ 21.2.15 npm as malicious. It is considered malicious because: - Th...

MAL-2024-11790 Malicious code in letstryout (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 7a93677f9ccf05c515928c2e92d24da7333665953bc870d75a78a1d20b4ac3e3 The OpenSSF Package Analysis project identified 'letstryout' @ 1.2.0 npm as malicious. It is considered malicious because: - The package...

MAL-2024-11789 Malicious code in majidalfuttaim (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1f62a0253b388a37cdf7f07ff7d02dac3e0bbed2516288af419cdcf7218c979b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11812 Malicious code in @flutteruki-gaming/eslint-config-flutteruki-gaming (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1d4e889992a980c69235fc81b993e0417a4bf52dcb6e16a20b0c32e8cf3057fe The OpenSSF Package Analysis project identified '@flutteruki-gaming/eslint-config-flutteruki-gaming' @ 1.8.0 npm as malicious. It is considered...

MAL-2024-11813 Malicious code in @flutteruki-gaming/test-eslint-config-flutteruki-gaming (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 2c8795f39ff812b69cf386eed8d41a525c823915d4a6a4eba553c30c637f9af7 The OpenSSF Package Analysis project identified '@flutteruki-gaming/test-eslint-config-flutteruki-gaming' @ 1.6.2 npm as malicious. It is...

MAL-2024-11779 Malicious code in blacky-sheppoing (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bd5fabc8fe73f97f7fe5b3fc0d6bcb5d30d10325cdc85801ff4b38f51112d597 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11776 Malicious code in spot-admin (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 5266209798ebafe67e3827752a8025acd7d54406e99400930929aee0c6b8e862 The OpenSSF Package Analysis project identified 'spot-admin' @ 0.0.2 npm as malicious. It is considered malicious because: - The package execute...

MAL-2024-11760 Malicious code in ico-maker (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 73a9101fd1883fa4391f715823a7c1e815b0f041bb5157972a143bddaaab285d The OpenSSF Package Analysis project identified 'ico-maker' @ 30.0.0 npm as malicious. It is considered malicious because: - The package...

MAL-2024-11770 Malicious code in keycloak-server (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 3df989aa26dccceca3917c9b3454427df4f54e9c104fbc080e913d30af3e66b2 The OpenSSF Package Analysis project identified 'keycloak-server' @ 0.0.2 npm as malicious. It is considered malicious because: - The package...

MAL-2024-11765 Malicious code in @wf-ceo/react-test-helpers (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 91f840b7f5327bc27f6d9d37a547419df230c1ff7fd68cca9b0753faf6759012 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11756 Malicious code in passport-openpass-example (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0761835d95103228401a69c1b951451a6a5698da0f7edec16514d5072d6b6051 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...