126 matches found
MAL-2026-103 Malicious code in const-enum (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a75bfbf64070500e046f70ab9f4422cd37764182dfa1c2d841bdbff803b4e24 The package const-enum was found to contain malicious code. Source: ghsa-malware b9e5e7ad6ed97cfa1d1a71c51090aa5350d5166494a11fa6e6c9bbdad50dfc28 Any...
Malicious code in asdfgh33 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 59190dcd898218c2925fdb51e3fe1090cb928c4bd0de218b403c0f25469ff083 The package asdfgh33 was found to contain malicious code. Source: ghsa-malware 15c01c114a3291d28b718c3328ddd213e72bb0ee0976ef40070061e41f1c3e3f Any...
Malicious code in iron-shield-miniapp (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6a7b0e4007bb817da7fd19c6ddd7f073f585337504d8ac60541b07e162398b70 The package iron-shield-miniapp was found to contain malicious code. Source: ghsa-malware...
MAL-2025-185352 Malicious code in @walletify/ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 47d10b25587929b2987efd39df23877c3753147c431eb456cef63e175e70588c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in tailwindcss-gustify (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1671650b65b4934845aada45f513b1bea7032ea94d90f9e1517e60bce563b621 The package tailwindcss-gustify was found to contain malicious code. Source: ghsa-malware...
MAL-2025-48297 Malicious code in shakti-platform (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2ca52c026a7d362e8dcd8046f9322539ce61e40b0508440b211d2ac62ae0889e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in redirect-pqigpl (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a23043000ec60bf8a39722f2c90862e102688439bf747cb5f1d52e96e8dd9f76 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in redirect-n79iht (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5d23ddf80f9c89bfbe0c712df917a9f8d17534c12279053f14c385ed91ed4c10 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48012 Malicious code in webpack-dev-serve-middleware (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fb201f67e4df2c2951dcebb70620a58ed8d7c1862d4697b4e14b2e95b6673d84 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-47985 Malicious code in 1unitest (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 46dbb904ebb44cb658e404afc6f818343f418ddeae078ea07ea9071f4f55c69d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in solarpeng125 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8efbc45d5a6c1e4417b885621127bea39b2fbbb6e6350676a2fd977303d5d059 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in mcp-server-fixthis (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4109cd9a0c196b277a25ff70ae8b8a81ee61aaac82c1d77bbb4e743496508e03 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-47827 Malicious code in mongodb-ci (npm)
The package mongodb-ci was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d9b911aab71cd920347a53724f3e83adcf499a82d3c5ae4a096bd972282ef97b Any computer that has this package installed or running should be considered fully compromise...
Malicious code in @sev-ui-verse/config-service (npm)
The package @sev-ui-verse/config-service was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 188aa603d30650e09cc52a7e6d86df9d9fa9e4bce6239596a6ee4a7a75a968bf Any computer that has this package installed or running should be considere...
Malicious code in @pumpfun-sdk/metadata (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fe74efc7770fd428add3639b89ec07606c3be7a22d6c185ef00ad4beb39b9c15 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in sos-models (npm)
The package sos-models was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7171745aec44dc0f96e3426f39966e6f22281703919bc10a7a161efef9b928cf Any computer that has this package installed or running should be considered fully compromise...
Malicious code in xml-request-parser (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 21f1d42d43604327ee124527dd04dcb37f13b0d2c46a4f2dc3e3764c7b2000bb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in vite-postcss-tools (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a86cf25e81b6e1f513cf67782d9ef778fe14ad1eba93f4a28adb2c1f63bfa965 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in pretty-chalk (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d026c38e3bb7cb5b1d371ac307d4728cbb8ded9508cb84340eed05baf1666948 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in azios.js (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f13743f8abbcc019c216daab17db9859fa997c1e9db567e6f39ac8240e89f91e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...