MAL-2023-1409 Malicious code in smsobfuscate (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis fa2efc28ecdebc90e41edd50503e199984f68d05cb13edab8b6e8d503d18e75c The OpenSSF Package Analysis project identified 'smsobfuscate' @ 1.0.1 pypi as malicious. It is considered malicious because: - The package...

MAL-2023-1369 Malicious code in iiris-new2 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis c0f584cfefbd98e630ed7a59b892d50d96387e5941f2a09a3543324b1c418396 The OpenSSF Package Analysis project identified 'iiris-new2' @ 1.0.0 pypi as malicious. It is considered malicious because: - The package...

MAL-2023-1419 Malicious code in test-test-test-leys-check (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis a0f1b447a06ae8cd034c08db769374bbc319460cc98a553bfc472d87ca1ef6cc The OpenSSF Package Analysis project identified 'test-test-test-leys-check' @ 9.9.9 pypi as malicious. It is considered malicious because: - The...

MAL-2023-1292 Malicious code in seafoam-desktop (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 11b7b515412cb320d382cffb4a3abe4fa232556d7db6ac3dde904bd295b279a3 The OpenSSF Package Analysis project identified 'seafoam-desktop' @ 10.0.0 npm as malicious. It is considered malicious because: - The package...

MAL-2023-1311 Malicious code in suncorp-styleguide-react-components (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1b6a39ac171632a984b8ac8c3e53ab935e47753ac7e0df7161daa7bc23f8e08d The OpenSSF Package Analysis project identified 'suncorp-styleguide-react-components' @ 102.0.0 npm as malicious. It is considered malicious...

MAL-2023-1120 Malicious code in back-alley (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 83d1eb07b6ba84ecc98bdd4ad2a1313b540e69509c08d8d66f4b2fe54a1986a7 The OpenSSF Package Analysis project identified 'back-alley' @ 1.1.0 npm as malicious. It is considered malicious because: - The package...

MAL-2023-1429 Malicious code in modified_bayes (RubyGems)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1c5711b3c10ba19ca7c68581b9cd246029ba621b35c0371e4a043d69050b9363 The OpenSSF Package Analysis project identified 'modifiedbayes' @ 10.1.0 rubygems as malicious. It is considered malicious because: - The packag...

MAL-2023-1121 Malicious code in ban-notifier4 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 40f50b4925a587e36b4236377850d644915a64a9183b4f152ac4f99cefffd557 The OpenSSF Package Analysis project identified 'ban-notifier4' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...

MAL-2023-11 Malicious code in microsoft_kiota_http (RubyGems)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1aea1a60f074d92d58e8e1644f08af16097bc4fc496a7acc2b60f586ce504017 The OpenSSF Package Analysis project identified 'microsoftkiotahttp' @ 6.0.1 rubygems as malicious. It is considered malicious because: - The...

MAL-2023-1115 Malicious code in api-code-capture-chrome-extension (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis f1e44f89c4e3876559f46852c9a652c510df9384be3ffd0180e36f9fd64e8cfe The OpenSSF Package Analysis project identified 'api-code-capture-chrome-extension' @ 20.0.1 npm as malicious. It is considered malicious becaus...

MAL-2023-1337 Malicious code in virgil-spring-boot-starter (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1d7b81762635da58744d7567d3ac4b1bf12da5d3c72070a9d2260d40463fcdbb The OpenSSF Package Analysis project identified 'virgil-spring-boot-starter' @ 20.0.0 npm as malicious. It is considered malicious because: - Th...

MAL-2023-1182 Malicious code in fkletbbpoc (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 125b0aa54538899871c0071ae4b76678012092032ff03d6ad08c4ecf1a2fc7d7 The OpenSSF Package Analysis project identified 'fkletbbpoc' @ 0.0.1 npm as malicious. It is considered malicious because: - The package...

MAL-2023-1274 Malicious code in proton-pack (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c87e5ff9b7fca2cbd9b8c5f66c8849dd5f06f3e36574d1e902b216d332a207ac Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in webpack-cli.legacy (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 22737261df7f74819a3f3f968e6516db5e37f6621827d6148b290f7650b9992f The OpenSSF Package Analysis project identified 'webpack-cli.legacy' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...

MAL-2023-1342 Malicious code in webpack-cli.legacy (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 22737261df7f74819a3f3f968e6516db5e37f6621827d6148b290f7650b9992f The OpenSSF Package Analysis project identified 'webpack-cli.legacy' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...

MAL-2023-1282 Malicious code in react-test-renderer-17 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 44a1a6575888ff4c59c07150c3211aa61af227fb9d17025b72af93ba65153098 The OpenSSF Package Analysis project identified 'react-test-renderer-17' @ 1.0.0 npm as malicious. It is considered malicious because: - The...

MAL-2023-1316 Malicious code in tempomati-omega-5-emcuf5 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 6f86820db1cc72b3ab2076578417815de7e0bc83b54e954f68b41a7adf28dd66 The OpenSSF Package Analysis project identified 'tempomati-omega-5-emcuf5' @ 1.0.1 npm as malicious. It is considered malicious because: - The...

MAL-2023-1143 Malicious code in compositionupdate (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 609e73b696d2a84c8c2169afde78694231815b46be300710ddf913fed7c63d1b The OpenSSF Package Analysis project identified 'compositionupdate' @ 88.8.8 npm as malicious. It is considered malicious because: - The package...

MAL-2023-5 Malicious code in eslint-plugin-indeed (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis cd3cf0dfdda3ea0bf705d385efb05c56b971a408c4a0dceef3771d2e474a33e0 The OpenSSF Package Analysis project identified 'eslint-plugin-indeed' @ 99.99.9 npm as malicious. It is considered malicious because: - The...

MAL-2023-1155 Malicious code in dist-web (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis ff355bd5f2422ce630aeb0652869d4bdaa8f3f18cf576fc60a76588f3acf36b4 The OpenSSF Package Analysis project identified 'dist-web' @ 99.1.1 npm as malicious. It is considered malicious because: - The package...