90 matches found
MAL-2026-4311 Malicious code in explorhub-claude-bridge (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5888ca1c6b220e4722ac7efe59117b3166ac06da038871ddd7bf9e1538e54bbe Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @zentrafinance/contracts (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 867d053632b3bcc143ed8f9f0f75a1dccdc210cede972e8006d698ef796793e5 The package @zentrafinance/contracts was found to contain malicious code. Source: ghsa-malware...
Malicious code in foundry-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 650bf2f76e5aa2fc3b175c4b582ce3c3ee8b9ac6fe433ed925f6e521c619c60b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2026-3503 Malicious code in git-branch-selector (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dab170d586455af0816362e715de0907ddaa19adb87c68ef59255139322dde69 The package git-branch-selector was found to contain malicious code. Source: ghsa-malware...
MAL-2026-2326 Malicious code in raydium-bs58 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 866a59b63d949dfe36c6082c9daa6fddcb18993724e9980c245a49ff59944fee The package raydium-bs58 was found to contain malicious code. Source: ghsa-malware b6ba968c5cb1e12fc81fc5ed1694c2221b6ac0299199508b80100927801f07f3 A...
Malicious code in filenames-simple (npm)
The package 'filenames-simple' is part of the PhantomRaven supply chain attack campaign Wave 2. It uses a Remote Dynamic Dependency RDD technique: the published package appears benign but includes a URL-based dependency in package.json pointing to an attacker-controlled C2 server...
MAL-2026-1549 Malicious code in syntax-do-expressions (npm)
The package 'syntax-do-expressions' is part of the PhantomRaven supply chain attack campaign Wave 3. It uses a Remote Dynamic Dependency RDD technique: the published package appears benign but includes a URL-based dependency in package.json pointing to an attacker-controlled C2 server...
MAL-2026-1013 Malicious code in chai-as-pause (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d6bc450b711e5bfeca160d6a4836ce78f7da759812438fbf0701cf8c2f95e38d The package chai-as-pause was found to contain malicious code. Source: ghsa-malware 58583a4b9f33e23b3cafb853c51539fbe79e149a4d6e5cdfafa98713d32e64cd...
MAL-2026-751 Malicious code in express_update (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 28c7b65df1b37b94c79306e3445abeee20ff9f0b8757efec76a2c3ae2a258e78 The package expressupdate was found to contain malicious code. Source: ghsa-malware e6705fb6bba3859557f5fcc5e759b38a88a71c878260762672e3e161afde2c0e...
Malicious code in atg-atgse (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a4a895bff954a7aac56b4897d5f8582caded83251256152d5f9b7d55a53eedca The package atg-atgse was found to contain malicious code. Source: ghsa-malware c7041c7bfbb06e2e710b58e8aeff432e4774d756db057975426c046c7ea06339 Any...
Malicious code in mapkit-example-vue (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a99b2a1b5d1181c18ff26056481018d107fc6fc38df563e0d7fba6aa44b7cd51 The package mapkit-example-vue was found to contain malicious code. Source: ghsa-malware...
MAL-2025-191551 Malicious code in solana-dexfi-suite (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c4f861ff5e19b1087835b4a7ad5765c382e2f243dbf1521bd3154c0a93e79051 The package solana-dexfi-suite was found to contain malicious code. Source: ghsa-malware...
Malicious code in gitsafe (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 35755a0fed2224e2746cd32f8d78ac75980b4669f74e99603a5420f45712cfb9 The package gitsafe was found to contain malicious code. Source: ghsa-malware 9452f81203482947db7c464bd8a2250d768724dc16837b1e6d56b5c561b343ed Any...
MAL-2025-190732 Malicious code in @ensdomains/hackathon-registrar (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e716a8dcc9bc434bac11136dafe767da2dd4e8996c9ae25b809b63a2e5eb6d7b The package @ensdomains/hackathon-registrar was found to contain malicious code. Source: ghsa-malware...
Malicious code in @seung-ju/openapi-generator (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0f38aa15b9a4a24dec5d8ea17b00f0bcc9e7ba46386fd087b3a9fa569ade45a6 The package @seung-ju/openapi-generator was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190509 Malicious code in react-confetti-modern (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 97a195b8307abbf7a2b6a5d4bd82b65aaad0891e87788e11d1a934707180631c The package react-confetti-modern was found to contain malicious code. Source: ghsa-malware...
Malicious code in tailwindcss-gustify (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1671650b65b4934845aada45f513b1bea7032ea94d90f9e1517e60bce563b621 The package tailwindcss-gustify was found to contain malicious code. Source: ghsa-malware...
MAL-2025-48922 Malicious code in @jameson777/mytest8 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2b156e6ec35304232881859a1a11917ad7244fcea63f2683ef1a381098858d9d The package @jameson777/mytest8 was found to contain malicious code. Source: ghsa-malware...
MAL-2025-48177 Malicious code in redirect-k1jlsf (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d546307dc3fa41df2f485a0f6166f951b2a8e22a3c8ef77e2a07e5f88258df6a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48152 Malicious code in redirect-e19jye (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3a6122a3af15da86678978370ddd69e455fa6bf90a36c33791a482a7c003d106 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...