887 matches found
MAL-2026-2587 Malicious code in @kucoin-gbiz-next/tools (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 74b28e2536b0d59d01e913269776e3bd933f0bce2477136d28b923d2b5222d54 The package @kucoin-gbiz-next/tools was found to contain malicious code. Source: ghsa-malware...
Malicious code in @hpcc/js-api (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 66d87d26a2f328414129f2abca4fe30a3f49afcefc1734ff29504b30e8e5e538 The package @hpcc/js-api was found to contain malicious code. Source: ghsa-malware baed13149b187a8ebee8b70891d8c38114a2f8c25e0048e5f2524ae8cb61217e A...
Malicious code in mdb-react-sortable (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 221ae0ca7ee784d6ab2d9bb463b65dc3d998114b51b3dd7a4f3585ef2b1ed11a The package mdb-react-sortable was found to contain malicious code. Source: ghsa-malware...
MAL-2026-2318 Malicious code in @logcore/pino-pretty-logger (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6a729cc1811bd1bc1fa94404ad4bcd8376c1a29b90311fd2a89efecff51fe592 The package @logcore/pino-pretty-logger was found to contain malicious code. Source: ghsa-malware...
Malicious code in @sixcore/baileys (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1286e85f8b045ceb430500873b6a172bc5bef2193da8d53ec25183e7a4984cd8 The package @sixcore/baileys was found to contain malicious code. Source: ghsa-malware 4d631c0d901cd4ee9e33f1b24f2a7e067cb4369c7813ce8d46e7e7f0e2217a...
Malicious code in ts-bign (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4a068fd0715cfd570ef64c7f6d249383560483880d19fb75a94ac4997a742c70 The package ts-bign was found to contain malicious code. Source: ghsa-malware 6e364f088c15924f92d8290e79ca278120b3d8778345dcad0aad75e821d352e0 Any...
MAL-2026-2111 Malicious code in tailwind-font-inter (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b2cb39a969b06dada95f847c6d5fc21fd0cb38a37c6b38a6b60ef1ca439f2147 The package tailwind-font-inter was found to contain malicious code. Source: ghsa-malware...
MAL-2026-2104 Malicious code in ty-fragment-core (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 88bca7665eab3ba9300549f837880aea1567494c90187abacee03c85eaeb99e2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2026-2092 Malicious code in pulse-feature-flag (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fad1549c9f60719931f740e56bfa68762b93275b97574f4d8d2c08aeedc71344 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @emilgroup/public-api-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 49b32ec5041ad00c8a07401245056cc069fd80826da4c73121803ffc3a705119 The package @emilgroup/public-api-sdk was found to contain malicious code. Source: ghsa-malware...
Malicious code in @emilgroup/payment-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f542634a5cc2ab40aeafc714c61c2d4dff67459d127e423f535812ac1b05b60 The package @emilgroup/payment-sdk was found to contain malicious code. Source: ghsa-malware...
Malicious code in @opengov/ppf-eslint-config (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9589ba5a93df27f74e2153118cf450e51df3df58d8c7abd8e4043cf28c0d8bf The package @opengov/ppf-eslint-config was found to contain malicious code. Source: ghsa-malware...
MAL-2026-2031 Malicious code in @emilgroup/account-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0c31c8b6deb277deb631be4e0ce8b07d6896462492574a9e5b25041a9b0b6424 The package @emilgroup/account-sdk was found to contain malicious code. Source: ghsa-malware...
Malicious code in kyxserver-everything (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7be104f8e720927f9b7ea1bb3d036db80ffa6b65c8b7f0a6c8af29d1d4631f43 The package kyxserver-everything was found to contain malicious code. Source: ghsa-malware...
MAL-2026-1948 Malicious code in fadlsjf (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7851237c54cc21d98214fdd4c10550fb6665672f78c6f685de666e25f116c54f The package fadlsjf was found to contain malicious code. Source: ghsa-malware 84c2aa35dc6cdbc9581e9c90d31fc8048bf73c56102725c533f82882b2aa3422 Any...
Malicious code in mtpmysql (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d398ba3dd05ce79a06fb2a2433842d601f917e38ffaa3ad94c02adc1bdb3b67f The package mtpmysql was found to contain malicious code. Source: ghsa-malware 0c3a7ad80c6454678adb0b86352965523e6157aec98c3976686697663fd882e8 Any...
MAL-2026-1971 Malicious code in trex-proxy-browser-extension-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9eb36a59a719cff949c203a03a41c54b637bb1974bdea728b1bc15e837a7db45 The package trex-proxy-browser-extension-sdk was found to contain malicious code. Source: ghsa-malware...
Malicious code in chai-as-constrained (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ea5f87c9fffb9b32d6390a3922c9a8bfc616a693910c9a8d7599cfa8ef11c9e9 The package chai-as-constrained was found to contain malicious code. Source: ghsa-malware...
Malicious code in transform-property-literals (npm)
The package 'transform-property-literals' is part of the PhantomRaven supply chain attack campaign Wave 2. It uses a Remote Dynamic Dependency RDD technique: the published package appears benign but includes a URL-based dependency in package.json pointing to an attacker-controlled C2 server...
MAL-2026-1532 Malicious code in syntax-exponentiation-operator (npm)
The package 'syntax-exponentiation-operator' is part of the PhantomRaven supply chain attack campaign Wave 2. It uses a Remote Dynamic Dependency RDD technique: the published package appears benign but includes a URL-based dependency in package.json pointing to an attacker-controlled C2 server...