MAL-2025-2054 Malicious code in tg-shell-bot (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 38c69457497c0691d6d8e9fd41c25a9a61cbddbabee9cd66faa2d7ddc05045b2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in internallib_v488 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f37f04bf2b99a1dd9d1b1233d8d2f7146da088e20564fc4bb543560acebb10db Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-1868 Malicious code in internallib_v590 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ec78d3b6f3c622365e71936c4fd09e3057a62055d7b0474ce38ea3b6560b36e0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in npm-manifest (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ade7d6d1c64c23c0b5ce1641cbe6a421ae5e995127affe277b05a6328ef012e1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in segment-anything-mini-demo (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cb8c3372e17b2d5c656e3413a8226ae4df29679ad9dd48131d608a31a2e4bc93 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-1740 Malicious code in bindbc-sdl (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c73f8013f05d5127ca295e1eba72f72fbc8ced29dbb5f27663588e7150c3d1db Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-1946 Malicious code in traceviz-client-core (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f13f02647de53cecc725fc4d06dbe6ba022bfcee2f3ee730df96d83db43e18f5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2047 Malicious code in paypal-sdk-server-side-integration (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e7cbb479a86e79945f77f69a5ee3fa04d2ed76af23ea3bc9de04b02ed5cc0b4d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2052 Malicious code in staked-celo-app (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 67d1427804f29e64b173dba49a127547304fc5e45b01496a6fccf04f0759236c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2050 Malicious code in segment-anything-mini-demo (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cb8c3372e17b2d5c656e3413a8226ae4df29679ad9dd48131d608a31a2e4bc93 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2036 Malicious code in ct-connect-stripe (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d65e3e59596a1bfed6dbb57c4cdf6b56d77ef26faa5eeb31708ca799ec3cfb7c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in accept-a-payment (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1d066801593b468617494b166d230eba3bfc7df3e454f9125333718ef42f6953 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in safe-settings (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7c3d915aeed7d9c3e993a54045d2f8dda26ca9a1632b641f65553f3fc796074c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2053 Malicious code in stripe-sample-accept-a-card-payment (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f9df31417aaee6da47501df51c7b5f60b6d64285d452187a4165e703683ff2f3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2031 Malicious code in animated_vector_annotations (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c3b53362867f99721ff884fb86d3d8f5ccc5bcb1d9abb33b7b67f8fd7fe4408c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2038 Malicious code in dependabot-pull-request-action (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f89f292c4aeef9adcdb74b756e9f23059ca61f0327bfb78956c32e30c9bf3c7c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2029 Malicious code in accept-a-payment (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1d066801593b468617494b166d230eba3bfc7df3e454f9125333718ef42f6953 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2033 Malicious code in checkout-one-time-payments (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b07c8dfeaf38da871c1e555b86d76046f4752bc738bf14ed15147cdadb6d92ad Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in decode-a-gif (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 189852f75090ee4074de6d69b443a1ce458fa720fb8e18267f6923c5c97bc2c7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2037 Malicious code in decode-a-gif (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 189852f75090ee4074de6d69b443a1ce458fa720fb8e18267f6923c5c97bc2c7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...