15438 matches found
MAL-2025-49262 Malicious code in node-base58 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e650ba35532afdff95942d9f08f3eae361d1b7481551253361b299bdb8354599 The package node-base58 was found to contain malicious code. Source: ghsa-malware 1d966f73ad19ab1fb24763cb1937d69690004b818fc7ca4b301b13c122da974b An...
Malicious code in style-tailwind-variant (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 44577e5c235fe9163b6f47f81c7813a15491137478bb6ccbe5fe45ca911d17d1 The package style-tailwind-variant was found to contain malicious code. Source: ghsa-malware...
Malicious code in ve-hemi-actions (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c1ce1c8c14c652c22fede3ed26692b173255af2cebbbfe34e91d78ade7b5f9eb The package ve-hemi-actions was found to contain malicious code. Source: ghsa-malware 13edaf6e255d735724b90e45ce9e8ab5c1d6e0f0474ca23ed567341e4a08183...
Malicious code in soxhob-client (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f363c792232ff069ace1465cb749f1af3aaecf8dfac04cfd380891e6e92caec9 The package soxhob-client was found to contain malicious code. Source: ghsa-malware f87ebbd60bec6fb45dfb478c7a9bd94336690f19c4870e5ac5766c9d864a75ff...
Malicious code in ethesjs (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ea9c413600cb75bea29c7e567157efcaa07b76b9efbb30cb378943bd81eb760e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in dezcord.js (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1376788b01add01972ac5e18172db4fbfcde5c78e3f51eaf8fc170e5d44532c3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in sort-keys-fix (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6fd040f6b48ad761cb38f7172921ad9f1a82689c1ac612e6f936271eaf1f08d1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in xo-tracking (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 99bf711c41656a6263989c743ebb667fca6ffbe7e749e7bacb698540cea9ffd9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in xo-styles (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 44b06297a4f222643e8b7a977e7dfd944c0a2666d5066f0db0a61674b2ea84a9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-49074 Malicious code in xo-tracking (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 99bf711c41656a6263989c743ebb667fca6ffbe7e749e7bacb698540cea9ffd9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-49040 Malicious code in simple-import-sort (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bc5caceb82a60c3342bf66bc4d6a60a268d94712079783637e89a40b6f374122 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48962 Malicious code in @gitlab-lsp/pkg-1 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7df0575a200975029552912084573cf0331e1cf02ccad8e8fd7e024536143ef8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48964 Malicious code in @gitlab-lsp/workflow-api (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 77c05dd20ff8e2d3c07051d2f1146ac86522b9a72a6964e27122c9dd02d4c7a5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48965 Malicious code in @gitlab-test/bun-v1 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ac471c58a2d40a399987d96cf13593df041d1f3baa4d4e19e047d1090a931f6a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @gitlab-test/yarn-v4 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f274342e8c6f4a200134b68b571eb1eb5d9f01c5d28f5d445b0da3fff6808ff1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @aio-commerce-sdk/config-typescript (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 85b2c7fad2af3e611f7fe4d8399529e1b897e4ca8838e1a5db0a2c61acb4d998 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in typescript-sort-keys (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9936ccc8347b00204eae711ecf8b26d6d9444300021678c11327776463123325 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-49059 Malicious code in typescript-compat (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0acc4ba0bcbd7793656800efb10926d4044fa65326e8bee88e9b92d2504bc668 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in crowdstrike (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 11cd49b95ecfbbbeedc96c140184f8543c29b3a6b60688c32bb40459bd164a76 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-49053 Malicious code in trezor-rollout (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6ddacc3033f82ae4ac26ccf3e7b622d3f3d7d8e04418bd1375f8770137641a7b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...