Copilot API Proxy 安全漏洞

Copilot API Proxy is a reverse proxy service for the GitHub Copilot API developed by Erick Christian. Versions of Copilot API Proxy prior to 0.7.0 contain security vulnerabilities. These vulnerabilities stem from the Header Handler component’s reliance on reverse DNS resolution for handling Host...

rsa crate has potential panic on a prime being equal to 1

When creating a RSA private key from its components, the construction panics, instead of returning an error, when one of the primes is 1. Discovered by Christian Reitter from Radically Open Security during a security review for Proton AG...

EUVD-2025-77343

Malicious code in christiansparrow-silentdev npm...

EUVD-2025-77344

Malicious code in christianrooster-tool npm...

EUVD-2025-77342

Malicious code in christianworm-smiletea npm...

EUVD-2025-79651

Malicious code in christianbearz3n npm...

Malicious code in christian-teadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 78cf8010f0a09cc9e137c8011b2bab4120f880d33059a94f0ed0c96adc826453 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-82513

Malicious code in christian-teadev npm...

EUVD-2025-71649

Malicious code in christianarmadilloz3n npm...

MAL-2025-83902 Malicious code in christian_buzzard_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2104bbae374f4e2c5c95970403f7a0ff549f383730ec70f2661396e777e314ba This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-86839

Malicious code in christianbuzzardz3n npm...

EUVD-2025-55470

Malicious code in christian-fuchsia-jaguar npm...

EUVD-2025-55469

Malicious code in christian-gray-tahr npm...

Malicious code in christian-fuchsia-jaguar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ad0cd99fd16176c5da0f8a4ac26e7b91c5a6e10da9281d9a4e78f8aa65b08e7f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-55534 Malicious code in christian_silverfish_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 90ccf7b438f4f9fcd58ddafaca7e093ab75b9b3de888d7559c0551b6aeb940b5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-48441

Malicious code in christiansilverfishz3n npm...

EUVD-2025-48443

Malicious code in christiancaribouz3n npm...

alloy-dyn-abi has DoS vulnerability on `alloy_dyn_abi::TypedData` hashing

Impact An uncaught panic triggered by malformed input to alloydynabi::TypedData could lead to a denial-of-service DoS via eip712signinghash. Software with high availability requirements such as network services may be particularly impacted. If in use, external auto-restarting mechanisms can...

EUVD-2014-5480

Malware in sbrugna...

EUVD-2006-1715

Malware in sbrugna...