MAL-2024-11755 Malicious code in @neo-ds/neo-utils (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 6d3d5e2f6b432e3a4491b74a6c06d176dcf93aa9cf419db326cea281b530044b The OpenSSF Package Analysis project identified '@neo-ds/neo-utils' @ 3.3.7 npm as malicious. It is considered malicious because: - The package...

MAL-2024-11767 Malicious code in com.unity.collections (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 261ab2743232ff1e6c05ececf67a115acadf196fe4994bda33c1da81b933ac67 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11251 Malicious code in @neo-ds/components (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis eb7303825f9830a20957d406c7a1b9193816b17c907592e4fa1e8a6fa48c61e3 The OpenSSF Package Analysis project identified '@neo-ds/components' @ 3.3.7 npm as malicious. It is considered malicious because: - The package...

MAL-2024-11247 Malicious code in fake-emitter-no-schema (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 617a8cfca6b74959261bd71e3b3ca3df87a9c9640991d6ffcf692cf5597f01c3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11244 Malicious code in nextcloud2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0849e0cda274c845158689c282bae36877b598c0a3e458b2e44243c3acd542d5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11242 Malicious code in yelp-lib (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis f281d7fb655f7083b4004d10fb257b419c7aeaf1ea0b79636721d4724aec51d9 The OpenSSF Package Analysis project identified 'yelp-lib' @ 17.1.2 npm as malicious. It is considered malicious because: - The package...

MAL-2024-11236 Malicious code in auto-plugin-appetize-cleanup (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7b5ae41ae089a0123963d0d11e9e9c097d2ea1c9a9610c8b8d626303631ed5e0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11234 Malicious code in adminconsole (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 88480db379ccb5378aada30388162f00d8033acb86b62e8d2e490533646c4a4d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11224 Malicious code in file-dep-a (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 167e76bf6af632f8aff7b06b0a8b05d6a25772b2cb139605e13b5b9a84ecf53b The OpenSSF Package Analysis project identified 'file-dep-a' @ 1.2.0 npm as malicious. It is considered malicious because: - The package...

MAL-2024-11223 Malicious code in usdc.js (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8c87f8dca2d6eefcdbdec42cfba8e7b187195b7531d277735a9e255911fc1e3e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11222 Malicious code in prettier-v3-for-testing (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 522c1e741b8482af7e3577e20c83b8e29a0f217b9c951d0e815e5c01af165408 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11814 Malicious code in @tradm/my_package_legit (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 29cce75017efa5cb89df0d22884f39b9d70b835108800ea9b64b10f295f11eb7 The OpenSSF Package Analysis project identified '@tradm/mypackagelegit' @ 1.9.24 npm as malicious. It is considered malicious because: - The...

MAL-2024-11219 Malicious code in asuuuuu (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 40d2219a3e70e5af240f63d41ab082cad543b84acf2abd045011db292bc69654 The OpenSSF Package Analysis project identified 'asuuuuu' @ 3.1.3 npm as malicious. It is considered malicious because: - The package communicat...

MAL-2024-11249 Malicious code in privy-frames-drop (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis d7f03babad9cbb72b88a3dac7beadb5275fa4c3ab5364d435f372bf5dffbd8ee The OpenSSF Package Analysis project identified 'privy-frames-drop' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...

MAL-2024-11189 Malicious code in pocfinalone.js (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 57ba0a7f365bfa72152e4c3d1f5031f733dbc369cf392a3afdf557f70546bde3 The OpenSSF Package Analysis project identified 'pocfinalone.js' @ 1.0.4 npm as malicious. It is considered malicious because: - The package...

Malicious code in spinal-core-connectorjs_type (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f3451f756dd259cb0c2c30ea5f39c2d4a80eef529d40a35beafd582ce7d01420 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11173 Malicious code in spinal-core-connectorjs_type (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f3451f756dd259cb0c2c30ea5f39c2d4a80eef529d40a35beafd582ce7d01420 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11171 Malicious code in readium-css (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e052a1c3b7fcfedb0cee689603d30bf043df8eebeff0146be74a4b0e218d62a0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11169 Malicious code in language-babel (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 868a15884f8fa2dcf7b6c3e4c90ba8f449da26537cb4a784fc76e22057c739f8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11159 Malicious code in fetlla2-js (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 626ab8d342caf421b4ede0958a23d5fecc4a7272ca83f0a7b5a4bbf2349a845c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...