2 matches found
Malicious code in nodemon-delog (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ea1c5b4054d6daffaf190005db661027e29255ae20de1bb410f506de1f178532 nodemon-delog is published under a name that resembles the widely-used nodemon package and ships a verbatim copy of nodemon's source tree, README,...
chai (=4.0.0-canary.1), chai-project (=1.0.0) +2 more potentially affected by CVE-2023-43646 via get-func-name (>=1.0.0 <=2.0.0)
get-func-name NPM version =1.0.0, =1.0.1, =1.0.0, =1.0.4 Source cves: CVE-2023-43646 Source advisory: OSV:GHSA-4Q6P-R6V2-JVC5...