159 matches found
Malicious code in vscode-docker (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 61618685e358ec6a20db218d79632439bfc8286cfea396d5184f9bdbd019f640 Any computer that has this package installed or running should be considered...
Malicious code in gateway-v2 (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware abe54b05ee1d5acceb6bc29fb2446737ebc56ffbe8b976e5e97b93794588ac8c Any computer that has this package installed or running should be considered...
Malicious code in dasjhs (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 90eb199686c875a0d5912d7e7704ac6722aae5e383dfda1a22b0811b82d7015c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in moonpay-sign (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2b5de9ec184be265177d407487382fe8b9fb3b0a9b975b1d2570a06d6c054c70 Any computer that has this package installed or running should be considered...
Malicious code in okmanalright (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b2727510b2d20ad0199648c80f577b241990e17e37d1fa598e2cee9a34d5716b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in thiserror (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware badf31d06e4224844dd07745bbfb4a2eaac4c051c4a92d7bb179680c8220b0e8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in xeno-client (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3794b70c9005dec3c935f978a1bcb31199dd1f01b1bf35a10bc9bd134ba82ef6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in rolldownload (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2e57796af333715605cb3404f3d8653189e6859e7d409e69670109ab17dad2ff Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in hardhat-ethers-react-ts-starter (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f8762e2209b41b4f6eb94a4d56674ed8d23f5ecba64034e0825fe7490fea5c78 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in console-node-ts (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ecc4bf06f248fd5a32e4fed3e3e70f9b5de43bde1b2d52cb55eca94c6f7810b0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @supera/asjnakwndlja (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fe6ab5a3ff2b2c90cfb7b31837f77cab7b08963f47908e8f5f34e9280b20fe2e Any computer that has this package install...
Malicious code in coinw-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9c0c6baa45c1fd069597025a6670638c1d4bff2a901b784e80e27896ce62b2fd Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in grammyjs-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d05f6c295e765b1889ffc72832434e365ea15f5aa6f8a6a555f42364c86a2c17 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in biconomy-test (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware dc0a0f2ab0beead5e42fd0146fb90778a0a15b54ffa2b9b65db7fb0612c31d5d Any computer that has this package install...
Malicious code in vue-search-ui-demo (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5eba39e62ce67a90fdd330c95bec218d75c2ddbb0e16d24625081c96a115a046 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in com.unity.2d.common (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 75a37bfaf17aed750692186fe017783457f38ab50f15f7a49ddb94033cb27443 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in guests (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 90c450f222886a91d7c733fcfbdf4a4b5104c0b4a1d1931f79e0bea1201f1398 Any computer that has this package installed or running should be considered...
Malicious code in github-elements (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 35dc94fcbd18e94c7882aa977128714d48743858a044e9b7ace5f6b8ce8716bd Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in csquill-vue3 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bb70d66798d8e5c76afe2bd162bc5ff3b1192768a4a261bc7bc2de0d6606cedf Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in org.cocoapods.csv (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7a3d922335d96d21629591f3c06d391cc64ca4117561dcb9711fb65451dd841e Any computer that has this package install...