3 matches found
Malicious Package
Overview contributor-site is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package...
MAL-2022-2173 Malicious code in contributor-site (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 983760dbfcc881e13bd61d78eedbe838435fd76313d04c4474450d3ddf08d04a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in contributor-site (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 983760dbfcc881e13bd61d78eedbe838435fd76313d04c4474450d3ddf08d04a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...