Information disclosure

The coffescript module exfiltrates sensitive data such as a user's private SSH key and bash history to a third party server during installation...

CVE-2017-16202

CVE-2017-16202 corresponds to the cofeescript npm package, which is malware. The provided data confirm that the package exfiltrates sensitive data (notably private SSH keys and bash history) to attacker-controlled locations during installation. All versions have been unpublished from npm. The ris...

CVE-2017-16205

The coffescript module exfiltrates sensitive data such as a user's private SSH key and bash history to a third party server during installation...

CVE-2017-16202

The cofeescript module exfiltrates sensitive data such as a user's private SSH key and bash history to a third party server during installation...

[SECURITY] Fedora 20 Update: rubygem-sprockets-2.8.2-5.fc20

Sprockets is a Rack-based asset packaging system that concatenates and serv es JavaScript, CoffeeScript, CSS, LESS, Sass, and SCSS...

[SECURITY] Fedora 21 Update: rubygem-sprockets-2.12.1-3.fc21

Sprockets is a Rack-based asset packaging system that concatenates and serv es JavaScript, CoffeeScript, CSS, LESS, Sass, and SCSS...

[Bluebox-ng] UC/VoIP Security Tool

Bluebox-ng is a next generation UC/VoIP security tool. It has been written in CoffeeScript using Node.js powers. This project is "our 2 cents" to help to improve information security practices in VoIP/UC environments. GitHub repo : https://github.com/jesusprubio/bluebox-ng IRCFreenode :...