5 matches found
Malicious code in boogeyman (npm)
The package boogeyman was found to contain malicious code...
MAL-2025-15955 Malicious code in boogeyman (npm)
The package boogeyman was found to contain malicious code...
GHSA-9HC2-W9GG-Q6JW Malicious Package in boogeyman
All versions of boogeyman are considered malicious. This particular package would download a payload from pastebin.com, eval it to read ssh keys and the users .npmrc and send them to a private pastebin account. Recommendation This package was published to the npm Registry for a very short period ...
Malicious Package in boogeyman
All versions of boogeyman are considered malicious. This particular package would download a payload from pastebin.com, eval it to read ssh keys and the users .npmrc and send them to a private pastebin account. Recommendation This package was published to the npm Registry for a very short period ...
Malicious JavaScript Package Detection
Detection and reporting of known malicious JavaScript packages or package versions. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescripti...