MAL-2025-3511 Malicious code in test-kaks3c (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 591289fef82efe1b6a54e8948561a76e1e42addd4e1b62fe61364c894640b6b9 The OpenSSF Package Analysis project identified 'test-kaks3c' @ 10.0.4 npm as malicious. It is considered malicious because: - The package...

MAL-2025-3414 Malicious code in sas-pseudol10n4js (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2025-3351 Malicious code in @sporta-technology/d11-web-components.table-cells.tc-cell (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2025-3252 Malicious code in helper-function-name (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cf8d6cfb517715467379abc5d1adf9a80f10c786f6473f2d30c9961cba2445b3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3247 Malicious code in fatfingers-helloo (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 473958a91938ac87fe7925feadb207cc144a2e7e1d9cfe7f13029190825091e9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3232 Malicious code in bespoke-it (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 50c8574065c05dfb54a421ce73341ceff847e8acdccdc1a8e800d12e6aee9f05 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3210 Malicious code in flex-key (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 49eefd4354e4d8c5354eddd891739db212953f6cf5c4aa193bf5470a8e77c820 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3151 Malicious code in frosty-umbrella (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 20d7f515fb78bec30163c3692d2c0c01dfd49d5027dd597d31294aba1c7e57e5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3166 Malicious code in stormapp765 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 04a681db538ae851a3f840e7771e9cfbf20b575dbe1f061c22a0d00e4b9b333c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3133 Malicious code in valid-ip-ban (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b8178b30a109e454369e72c1f8e3c53686457f2af96fee398ca102ad91681e92 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3084 Malicious code in daos.fun (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6981bbd2419a973811f38b35a5dcf95ec496a17e132d0d95f86314cfb32cd914 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3119 Malicious code in skills-validator (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5ddd68a5caf984495eb4aae051d0bdd1bbfb4f1b8163b0dcb86fd996e7f24b16 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3099 Malicious code in fivethirtyeight (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2d85a317f633c161ef61f2ffd3d0cda992cf670bd7532a2ce875261ba067a39d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3127 Malicious code in windowsreveal (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 45eb7752fa24f9edaffa6707ee8ec4e0b1684a637d4d1cc1f6a003d040039332 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2796 Malicious code in rippling-marketing-site (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 33a7126a0a4c766d46bba75737e5f330267038f14b6006030e92fc55e076d658 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2783 Malicious code in riskchallengeserv-paypal (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7da27f27f9efcf0b2d496e909e97771157cccea447420e5fb908ed4e912fcce6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2764 Malicious code in icloud-cod (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d2010e55e06ea51e1cc28832f3dcaefbe120055aad38b827efac23cc2a2281f6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2760 Malicious code in f0-state-holder-duke (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bf4c907badcc403327c3447b84119be860f10f1e085424b05ae27f1c65343715 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2768 Malicious code in kaddex-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f347f71f4aaa1d161eda3bdcb1494331068aff9d830f7c93dcdc17c82462b7bd Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2712 Malicious code in telescopetest1 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware aa29b9ba0d788e8dc9516cc458ab02e3fce22faccc63522b0f1a6caf439ffb14 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...