MAL-2024-9416 Malicious code in webpack4types (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware af76ada8574132366108f7556f6e93423bf630af2d9af6406efefc94dc3557ac Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-9412 Malicious code in gerhtregefddfsr (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d49d2d7b46e404479e7049fd4c8e6990656fc1c00d07a94799a9d42b8213b138 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-9404 Malicious code in direct_access_theme (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e064b0aa00efc879c6095cc571b4d1359ef3cd9c13e1f02b5497c78d364fabef Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-9408 Malicious code in j5gerggnpuiwerbngpiutbgn0iutb0p (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 3b948e846f1817c6c72336ef38aac1149d25e0e40dc903eef60f7af4f3625e1f According to the description, packages should demonstrate the dependency confusion attack. The realisation is, in fact, a spamming with packages having as the...

MAL-2024-9211 Malicious code in manoj-app-css-alt (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 0c88dab3b32782f38a2c1b962d842f1c4c52400df0c5622d73f4989ebc8381f6 The OpenSSF Package Analysis project identified 'manoj-app-css-alt' @ 9.1.1 npm as malicious. It is considered malicious because: - The package...

MAL-2024-9106 Malicious code in @fdp-tools/helm (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis bef4a02ea616732eda209303ce418b0fbf07d43995a8ac48bada7b7967f78819 The OpenSSF Package Analysis project identified '@fdp-tools/helm' @ 0.1.11 npm as malicious. It is considered malicious because: - The package...

MAL-2024-9103 Malicious code in @fdp-tools/artifactory (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 7d1bc272c51a6ad1997aaaa84623c7746d308a5e53386e01c6845e1b849c7ffa The OpenSSF Package Analysis project identified '@fdp-tools/artifactory' @ 0.0.10 npm as malicious. It is considered malicious because: - The...

MAL-2024-9102 Malicious code in protobufj-cli (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 4ed062cce3f1c6c84bfdb6183ed9db3baafed65d7695929d1747b34a9dcdbba8 The OpenSSF Package Analysis project identified 'protobufj-cli' @ 9.1.1 npm as malicious. It is considered malicious because: - The package...

MAL-2024-9098 Malicious code in m-typescript (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 57e450947ea7b047b2ac4e80c9e97314a41934d654cf6a821829a0bf9d51c521 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-9097 Malicious code in lending-vault (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 133b0e4cf25dec04c7c3fb38e07d7d25d2b2cde44a6c4539d991144baa073ec7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-9096 Malicious code in app-monorepo (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1d98b7aa0eb79bf02f2a4aacf2f8a02611ac609640346bb46294561925dbf0c7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-9094 Malicious code in bolteu (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 4bd2a7cf68d796d1274d10ce0e343341543e85f964224249a958802918b2482b The OpenSSF Package Analysis project identified 'bolteu' @ 8.2.0 npm as malicious. It is considered malicious because: - The package communicate...

MAL-2024-9089 Malicious code in reference-implementation (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 051f4d558f24b6f5d2f54e122fac061a3312288839b9679ffcdadf0210dd32fb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in axp-product-ducks (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 5285fb9646b0435fb4ae3204b5975277243e149fc95c187c5c65e2fa0609389e The OpenSSF Package Analysis project identified 'axp-product-ducks' @ 30.0.0 npm as malicious. It is considered malicious because: - The package...

MAL-2024-9037 Malicious code in espace-membre (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 5b15612a701319c442ed796295c30f8613359c1e11fad94655184bdf089bbc9c The OpenSSF Package Analysis project identified 'espace-membre' @ 0.3.3 npm as malicious. It is considered malicious because: - The package...

MAL-2024-9031 Malicious code in c2-object-storage (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1470f00dfffc6e734913635819fbb158d4a5b044a9bcfddab4891b631dcb8000 The OpenSSF Package Analysis project identified 'c2-object-storage' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...

MAL-2024-9030 Malicious code in intercom-openapi (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3eb4800eebfbaf5b4769f3ed6e0cdff3b37e8f0ce5c2f08b9b57dfa6fea62394 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-8997 Malicious code in neuron-viewer (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c39e11d5c0e9f49ca7c1e136d6f73f692162e1873d0def4a3135bd3dacbdd9ca Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-8994 Malicious code in assistants-nextjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 49dcd943b6b43273aa613aed19e623aa2ae67153ce323248811b64b441f38364 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-8985 Malicious code in setup-specmatic (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 37056a566edf4edb22af5350f7710d850797b914acbc38bfce3554f44db61d86 The OpenSSF Package Analysis project identified 'setup-specmatic' @ 2.0.0 npm as malicious. It is considered malicious because: - The package...