41 matches found
MAL-2024-7547 Malicious code in sap-and (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 7796902a91a91134cb09c3e9efaecbbf8bc53f8a83aa68ef9ff5209d3301b567 The OpenSSF Package Analysis project identified 'sap-and' @ 0.0.0 npm as malicious. It is considered malicious because: - The package communicat...
MAL-2024-7527 Malicious code in sap-aim (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 244887dfb793a534f8315571ac4ce6a3f97aa3a4177470d47fd5ce38563548e6 The OpenSSF Package Analysis project identified 'sap-aim' @ 0.0.0 npm as malicious. It is considered malicious because: - The package communicat...
MAL-2024-7517 Malicious code in sap-advanced (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b44915bb9e2db1c39c412b6eafce4e28d360737be9e0a62b77d95c39f99f4c9e The OpenSSF Package Analysis project identified 'sap-advanced' @ 0.0.0 npm as malicious. It is considered malicious because: - The package...
MAL-2024-7089 Malicious code in cra-docs (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis e49ccaa79a7296b7f1237beb3210cabf6610aab5c68e2c349b1fff4d3b2bb332 The OpenSSF Package Analysis project identified 'cra-docs' @ 7.999.45 npm as malicious. It is considered malicious because: - The package...
MAL-2024-1357 Malicious code in by-fetch (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bbe17032deb287c69fb57c7e240590cb829a046c49e904b65d01686694636d5b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-1317 Malicious code in epc-primer-ui-tags (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis cfb923577e57629ff06e092f23f6da4b29067756b213c6e923154649d8f93aca The OpenSSF Package Analysis project identified 'epc-primer-ui-tags' @ 66.6.9 npm as malicious. It is considered malicious because: - The packag...
MAL-2024-1169 Malicious code in qlik-sense-dev (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 65fd03500a82dc6ac997cdeb7275cc6c67cae34d382b293886407c96166bc357 The OpenSSF Package Analysis project identified 'qlik-sense-dev' @ 5.9.991 npm as malicious. It is considered malicious because: - The package...
MAL-2024-1131 Malicious code in u-workflow.module.common.webapp (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 676ec2bf7328ac16d28e24c3bb40fca880b4161a25988951f815eb86c0598b95 The OpenSSF Package Analysis project identified 'u-workflow.module.common.webapp' @ 1.0.0 npm as malicious. It is considered malicious because: ...
MAL-2024-1129 Malicious code in espn-react-oneid (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 4692f32d575cbdbf797aea5aabd0d50c4015884bfac1ce7b40006443bd8759f6 The OpenSSF Package Analysis project identified 'espn-react-oneid' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...
MAL-2024-146 Malicious code in vscode-mlir (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis c610eb26b75afffa49527255692e967a24bbe7fd61242d8c2f45420c72d9b589 The OpenSSF Package Analysis project identified 'vscode-mlir' @ 2.0.1 npm as malicious. It is considered malicious because: - The package execut...
MAL-2023-8620 Malicious code in pillar-lifi-zap (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis f6752cdfc26aa682f3cbce0cfb7c709c97f885cbfae33367ffa76e599a041393 The OpenSSF Package Analysis project identified 'pillar-lifi-zap' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...
MAL-2023-8564 Malicious code in yelp-cgeom1 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis f1d368f32894c442f86028103800df96e8818dd226ac82b14b5cec80a267a202 The OpenSSF Package Analysis project identified 'yelp-cgeom1' @ 0.1 pypi as malicious. It is considered malicious because: - The package...
MAL-2023-8547 Malicious code in alok-test123 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis e08174da02aedc0309b86a446a477048c0e3a557116dcfe7850b2c0038fcb3c2 The OpenSSF Package Analysis project identified 'alok-test123' @ 0.0.2 npm as malicious. It is considered malicious because: - The package...
MAL-2023-8256 Malicious code in zenfi-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 9a75914f8d0929ed48294224224fab435793f654258889e4435c268b34d2ac4c The OpenSSF Package Analysis project identified 'zenfi-sdk' @ 1.5.2 npm as malicious. It is considered malicious because: - The package...
MAL-2023-8226 Malicious code in company_package_my (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 3f3e6351419385dd63eeaa9bdd36d22be97aa05d213effc8f93ef580e76e7226 The OpenSSF Package Analysis project identified 'companypackagemy' @ 1.0.3 npm as malicious. It is considered malicious because: - The package...
MAL-2023-1533 Malicious code in mapsapi-area (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 3a12b68cea467324465b98ad4c7ffcddb67cac55eec195215bce156b916abbda The OpenSSF Package Analysis project identified 'mapsapi-area' @ 2.0.0 npm as malicious. It is considered malicious because: - The package...
MAL-2023-1249 Malicious code in nightmaretestingpackage (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 6ecc46cf13068e4ebe6d534e65e7588e04bcafa5de43fa84a3b1ef4de5d79cad The OpenSSF Package Analysis project identified 'nightmaretestingpackage' @ 1.0.0 npm as malicious. It is considered malicious because: - The...
MAL-2023-1334 Malicious code in verycoolzpac (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 5375ee65b8d94a515b53e30980d783a66b8f75c2ad0f388f471e41b0dada5587 The OpenSSF Package Analysis project identified 'verycoolzpac' @ 0.39.9999 npm as malicious. It is considered malicious because: - The package...
MAL-2023-1205 Malicious code in iconfront (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 240c513249651d31b1c1f7e2f4d53fed69736ccbcd996a72e62ee73750bb868a The OpenSSF Package Analysis project identified 'iconfront' @ 2.0.0 npm as malicious. It is considered malicious because: - The package...
MAL-2023-937 Malicious code in vh3 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 43579c54bc5b30465c06b594fae446a6677de86c30d00f9808fe280b4d2338dd Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...