[SECURITY] Fedora 42 Update: k9s-0.50.16-2.fc42

Kubernetes CLI To Manage Your Clusters In Style!...

MAL-2025-191284 Malicious code in @pergel/cli (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d52bf0972dc9dad856bf4bc427d7d1bc127b3b0db55ec37a6e1d5327ffe59237 The package @pergel/cli was found to contain malicious code. Source: google-open-source-security...

EUVD-2025-199455

Malicious code in @pergel/cli npm...

Malicious code in @axinom/mosaic-cli (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7168f2a1e0e25128412330dd5022d955509346523f45c453d18e9205eb38b678 The package @axinom/mosaic-cli was found to contain malicious code. Source: ghsa-malware...

MAL-2025-191450 Malicious code in @axinom/mosaic-cli (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7168f2a1e0e25128412330dd5022d955509346523f45c453d18e9205eb38b678 The package @axinom/mosaic-cli was found to contain malicious code. Source: ghsa-malware...

EUVD-2025-199518

Malicious code in @axinom/mosaic-cli npm...

Malicious code in @accordproject/markdown-cli (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa9047c76812b92b2e951857e7b8b36154b6662c2483ca7528bfa6af593c69c7 The package @accordproject/markdown-cli was found to contain malicious code. Source: ghsa-malware...

MAL-2025-191449 Malicious code in @accordproject/markdown-cli (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa9047c76812b92b2e951857e7b8b36154b6662c2483ca7528bfa6af593c69c7 The package @accordproject/markdown-cli was found to contain malicious code. Source: ghsa-malware...

EUVD-2025-199519

Malicious code in @accordproject/markdown-cli npm...

@accordproject/concerto-cli (>=3.0.0 <=3.18.1-20251008112859) potentially affected by unknown CVE via @accordproject/concerto-analysis (>=3.0.0-alpha.2 <=3.24.0)

@accordproject/concerto-analysis NPM version =3.0.0-alpha.2, =3.0.0, =3.18.1-20251008112859 Source cves: unknown CVE Source advisory: OSV:MAL-2025-191171...

Effective Command-Line Interface Fuzzing with Path-Aware Large Language Model Orchestration

Command-line interface CLI fuzzing tests programs by mutating both command-line options and input file contents, thus enabling discovery of vulnerabilities that only manifest under specific option-input combinations. Prior works of CLI fuzzing face the challenges of generating semantics-rich opti...

MAL-2025-191458 Malicious code in @medusajs/medusa-oas-cli (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 48124e119c7f2c21e744172a5901266335824c5ceac7a1c631805772baa3798a The package @medusajs/medusa-oas-cli was found to contain malicious code. Source: ghsa-malware...

@medusajs/inventory (>=1.1.0-20230320210331 <=1.1.0-snapshot-20230320172940), @medusajs/medusa-oas-cli (>=0.2.0-20230320210331 <=2.11.4-preview-20251124000311) +2 more potentially affected by unknown CVE via @medusajs/medusa (>=2.0.0-next-20230310121604 <=2.11.4-preview-20251124000311)

@medusajs/medusa NPM version =2.0.0-next-20230310121604, =1.1.0-20230320210331, =0.2.0-20230320210331, =0.0.6, =0.0.2, =0.0.4 Source cves: unknown CVE Source advisory: OSV:MAL-2025-191457...

@medusajs/medusa (>=2.10.0 <=2.11.4-preview-20251124032825), @medusajs/medusa-oas-cli (>=2.10.0 <=2.11.4-preview-20251124000311) potentially affected by unknown CVE via @medusajs/analytics-posthog (>=2.10.0-preview-20250818120145 <=2.11.4-preview-20251124032825)

@medusajs/analytics-posthog NPM version =2.10.0-preview-20250818120145, =2.10.0, =2.10.0, =2.11.4-preview-20251124000311 Source cves: unknown CVE Source advisory: OSV:MAL-2025-191456...

kinvey-flex-scripts (>=0.1.8 <=0.5.0) potentially affected by unknown CVE via kinvey-cli-wrapper (>=0.0.2 <=0.3.0)

kinvey-cli-wrapper NPM version =0.0.2, =0.1.8, =0.5.0 Source cves: unknown CVE Source advisory: OSV:MAL-2025-191118...

Malicious code in kinvey-cli-wrapper (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0cd908bc42e771527ecff3b0ef336122eb8d484f23f0402f511ca30dcb7b37dc The package kinvey-cli-wrapper was found to contain malicious code. Source: ghsa-malware...

EUVD-2025-199129

Malicious code in kinvey-cli-wrapper npm...

MAL-2025-191118 Malicious code in kinvey-cli-wrapper (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0cd908bc42e771527ecff3b0ef336122eb8d484f23f0402f511ca30dcb7b37dc The package kinvey-cli-wrapper was found to contain malicious code. Source: ghsa-malware...

EUVD-2025-199173

Malicious code in csv-tool-cli npm...

MAL-2025-191084 Malicious code in csv-tool-cli (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4710ebc34f0c5b28d34c41d165d2fff2c6ea04e90038226c7b328283319dd2a4 The package csv-tool-cli was found to contain malicious code. Source: ghsa-malware 7a82657ae868943eebe70053efe5b50087b24ce2a81a2c5eccca35dcb483a1f2 A...