MAL-2024-10803 Malicious code in seller-package-common (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 34119ed9c1448fe010b34b65ac15d3bead19bc9991c34ee21e93b96c9507cd73 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-10721 Malicious code in evocater_libpnpmpublish (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 001fc2dcd580b1559c1d82a18b60fe72ecfddbbb099dfe3941093f94ec334609 The OpenSSF Package Analysis project identified 'evocaterlibpnpmpublish' @ 99.3.5 npm as malicious. It is considered malicious because: - The...

MAL-2024-10712 Malicious code in aptos-mint (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 36708bd8a484a66c209db0503bcb408bda289bc62ccb62bf603f1351229362ea The OpenSSF Package Analysis project identified 'aptos-mint' @ 0.0.1 npm as malicious. It is considered malicious because: - The package...

MAL-2024-10711 Malicious code in cb-cookie-manager (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9e21db163fcf5bd372c2a214576f2018fdca3221ae4ca1a4ed936a02d013c782 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-10665 Malicious code in eslint-plugin-wms (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d4b20357cf95acf41bc1718eeb796b29f01f318a9874d59cd4ef1a87dd4cadc4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-10474 Malicious code in verifypoc (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis c595859885b469030e044b6604a0e533f4f5508c8ef28c96da2319428bfc600f The OpenSSF Package Analysis project identified 'verifypoc' @ 1.0.1 npm as malicious. It is considered malicious because: - The package...

MAL-2024-10466 Malicious code in @bytedanc-ad/mui-vue2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis c30379ad4ca7a644dc00d7fe6583a1f268e6fb8e076179cf094519d27cf2dc54 The OpenSSF Package Analysis project identified '@bytedanc-ad/mui-vue2' @ 89.3.5 npm as malicious. It is considered malicious because: - The...

MAL-2024-10634 Malicious code in feddecorr (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 5a08a1b5896ec91ef4da59089d8a049b09c25bca64483a9fd8547eec3710615a A campaign of probably pentest packages flooding PYPI. Installing the package or importing the module triggers reporting basic info like hostname, path and the...

MAL-2024-10371 Malicious code in nuerst (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 155c4cfe70e7c556175ba3cc4e0c00815168e4e3a8b161ca72c0fcde99079ed1 A campaign of probably pentest packages flooding PYPI. Installing the package or importing the module triggers reporting basic info like hostname, path and the...

MAL-2024-9305 Malicious code in ts-calling-test-app (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 0db756d26a3007b10201297415dfaa2cf6315b37f9ef0b88fa32feac6aaf42bd The OpenSSF Package Analysis project identified 'ts-calling-test-app' @ 1.999.0 npm as malicious. It is considered malicious because: - The...

MAL-2024-8849 Malicious code in video.min (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1b2a0713372942343830cd53ad3ad5ffe4dcf7e827523510ef79e32b38f67db3 The OpenSSF Package Analysis project identified 'video.min' @ 1.0.22 npm as malicious. It is considered malicious because: - The package...

MAL-2024-8732 Malicious code in @desesap289/dev_dependency (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis ac047c7ec6034e7a80c74ca32646da104b86b3f39c46f7f836deeebebeb53b20 The OpenSSF Package Analysis project identified '@desesap289/devdependency' @ 10.20.9 npm as malicious. It is considered malicious because: - Th...

MAL-2024-7855 Malicious code in psh-hydra-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 7e602e73e004aedbd93e2617bee443de236f268346b5b57bd42fcd32669825fd The OpenSSF Package Analysis project identified 'psh-hydra-sdk' @ 1.0.1 npm as malicious. It is considered malicious because: - The package...

MAL-2024-7843 Malicious code in hlwgirl (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 70e129077e409b307127c9a7e24115d3838f7a8748b65fcc22df02cf79af94e7 The OpenSSF Package Analysis project identified 'hlwgirl' @ 1.99.2 npm as malicious. It is considered malicious because: - The package...

MAL-2024-7645 Malicious code in sap-badfiles (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 4a9459e9f1bcf3b7c028ace7fe4af0c22616ec0e041f4f784c04288e1e3d4c79 The OpenSSF Package Analysis project identified 'sap-badfiles' @ 0.0.0 npm as malicious. It is considered malicious because: - The package...

MAL-2024-7673 Malicious code in sap-cd (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b129ce991640a28395649d0743d86a38416052a617e290ac3fbe220ab780351c The OpenSSF Package Analysis project identified 'sap-cd' @ 0.0.0 npm as malicious. It is considered malicious because: - The package communicate...

MAL-2024-7600 Malicious code in sap-ban (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis f5c6aac6baea6c693c35b46c3c06e00f63a8c369ccf2dda1061322e7056c932f The OpenSSF Package Analysis project identified 'sap-ban' @ 0.0.0 npm as malicious. It is considered malicious because: - The package communicat...

MAL-2024-7605 Malicious code in sap-banreason (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1fa7dc864beb53e0fc53f649c195a692e7c3702aeeff1938fc8e427c33ba5e2d The OpenSSF Package Analysis project identified 'sap-banreason' @ 0.0.0 npm as malicious. It is considered malicious because: - The package...

MAL-2024-7598 Malicious code in sap-b (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis cbfc74857ad737313ca0e1dfbd620a7d4fdb906785117a872190e1233e57482a The OpenSSF Package Analysis project identified 'sap-b' @ 0.0.0 npm as malicious. It is considered malicious because: - The package communicates...

MAL-2024-7555 Malicious code in sap-apikey (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis cb8fd3ec31e8b463a6693640ad63d0daa3ec8d6ab786d3c92b8b0b713dddeec6 The OpenSSF Package Analysis project identified 'sap-apikey' @ 0.0.0 npm as malicious. It is considered malicious because: - The package...