MAL-2023-8255 Malicious code in csm27878 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 0055598a8a443f1bd67fa612291473dcb36ba6e1c9927df85775eea3d207de11 The OpenSSF Package Analysis project identified 'csm27878' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...

MAL-2023-8254 Malicious code in csmqrcode (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 7be3c7341134e3f6e8c5e298589bbf69296fe3056e225eb82b91aa3d23f5898a The OpenSSF Package Analysis project identified 'csmqrcode' @ 11.0.0 npm as malicious. It is considered malicious because: - The package...

MAL-2023-8259 Malicious code in react-fixtures (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 313318cff861c45bde316c24fa07d680f6c59e74a77ae6e65c31fe66f54e2f9d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in amhairc-web (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 13d3cfae40288462dfd8b822c93d41e65a99b5d16d94e0c3ba536eaf9b5ee0bd The OpenSSF Package Analysis project identified 'amhairc-web' @ 6.0.0 npm as malicious. It is considered malicious because: - The package execut...

MAL-2023-8163 Malicious code in symphony-monorepo (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1360bb9cfdd8afaf47d9444561048cc1f780fc6dd830a6d709320dc260bf7476 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2023-8120 Malicious code in @healthbridge-design-system/components (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 67a89e843273447a99a5bf30226772af73acc28ebaa30abad7579f363b87e848 The OpenSSF Package Analysis project identified '@healthbridge-design-system/components' @ 1.0.0 npm as malicious. It is considered malicious...

MAL-2023-8122 Malicious code in jerry1319 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 39c3e74d9394364350aac9f2396311212f3cf3e8704fb23daf2bca46a9e24227 The OpenSSF Package Analysis project identified 'jerry1319' @ 1.0.10 npm as malicious. It is considered malicious because: - The package execute...

MAL-2023-8103 Malicious code in sharinj-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis c38a5716c52678eb97b3b338a62f683268c28460657955b8ef607ef45c57a8cf The OpenSSF Package Analysis project identified 'sharinj-test' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...

MAL-2023-7992 Malicious code in pingserver-test.01 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5d1b45d47d16b0b11b03d83b5b03c34f73980a4e584b35227fbb1359f69c1bbe Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2023-7979 Malicious code in visual_components (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 7289e2b3846c5d4eacbe709a4bd08a2e48688e587b810b9535c2275275dd2497 The OpenSSF Package Analysis project identified 'visualcomponents' @ 1.0.13 npm as malicious. It is considered malicious because: - The package...

MAL-2023-8051 Malicious code in jupiter-i18n (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a995253a2ee90fffb109184b329a5e1966f4e8b6cd8a67c131c60324495d8127 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2023-8047 Malicious code in fiji-core-foc (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 99868c266f6b13c22eb7e5923b9f580d02691973cfe8a1a4636f226a2f4ccaab Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2023-7961 Malicious code in web3-provider-patchers (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8a3da847a0100e6d34ec1eaaf261644c00fcc8342f19bf86f01da33f61a7fb9d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2023-7956 Malicious code in sb_chatbot_ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 962d49e68e611a6b10b1a3d716d60661cabfa0b0b8d76f43ba0e489e5c20f581 The OpenSSF Package Analysis project identified 'sbchatbotui' @ 11.11.11 npm as malicious. It is considered malicious because: - The package...

MAL-2023-1572 Malicious code in happa (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1f34c3c3c27c46dc70ca4b7ab3854f396ae790248623d6ac2f5078244ece0a73 The OpenSSF Package Analysis project identified 'happa' @ 9.9.9 npm as malicious. It is considered malicious because: - The package communicates...

MAL-2023-1562 Malicious code in file-format-series-json-to-sketch (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 8508035009e823eff2a635014b28a526f6a2ed3a3132c185b572bb5cd26095ce The OpenSSF Package Analysis project identified 'file-format-series-json-to-sketch' @ 99.99.0 npm as malicious. It is considered malicious...

MAL-2023-1534 Malicious code in rb-journey-details (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 3b743557ed9835339d75bb8b71101ba1c088ce15ad0081bae310b2b405e24c01 The OpenSSF Package Analysis project identified 'rb-journey-details' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...

Malicious code in github-deployment-action (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis fbecfc86b0734310a1e38d002a298fffa75da0631b0309309bd26ad98188e97a The OpenSSF Package Analysis project identified 'github-deployment-action' @ 1.0.1 npm as malicious. It is considered malicious because: - The...

MAL-2023-1492 Malicious code in github-deployment-action (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis fbecfc86b0734310a1e38d002a298fffa75da0631b0309309bd26ad98188e97a The OpenSSF Package Analysis project identified 'github-deployment-action' @ 1.0.1 npm as malicious. It is considered malicious because: - The...

MAL-2023-1490 Malicious code in bugsnotfound (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 3980d08da6629463ad50e50b6a94591add7f48be24c1256a14e6d3e56fe69f55 The OpenSSF Package Analysis project identified 'bugsnotfound' @ 1.1.2 npm as malicious. It is considered malicious because: - The package...