MAL-2025-191350 Malicious code in @voiceflow/git-branch-check (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 374d8cf65cd8bf44935889995a1fe36af800d8f570be40b594fa1b3bca1c184d The package @voiceflow/git-branch-check was found to contain malicious code. Source: ghsa-malware...

EUVD-2025-199412

Malicious code in @voiceflow/git-branch-check npm...

CVE-2023-5226

An issue has been discovered in GitLab affecting all versions before 16.4.3, all versions starting from 16.5 before 16.5.3, all versions starting from 16.6 before 16.6.1. Under certain circumstances, a malicious actor bypass prohibited branch checks using a specially crafted branch name to...

Malicious code in main-branch-check (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8be08fa3cd592a6d15f6524eac04c1935a0fa11215c4143121b34e3a0de18e15 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-1524 Malicious code in main-branch-check (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8be08fa3cd592a6d15f6524eac04c1935a0fa11215c4143121b34e3a0de18e15 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2023-5226 Improper Control of Generation of Code ('Code Injection') in GitLab

An issue has been discovered in GitLab affecting all versions before 16.4.3, all versions starting from 16.5 before 16.5.3, all versions starting from 16.6 before 16.6.1. Under certain circumstances, a malicious actor bypass prohibited branch checks using a specially crafted branch name to...