MAL-2026-4733 Malicious code in wrld-dev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 58965a325ad88c872b7c01668e4c08ca337b5fa022c15e626e23697d23fb594c The package exposes a public authentication API auth.user.login, auth.user.register, auth.user.get, auth.user.delete, plus an auth.system RPC surface...

Malicious Package

Overview temhe-dev is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...

Malicious code in transform-dev (npm)

The package 'transform-dev' is part of the PhantomRaven supply chain attack campaign Wave 2. It uses a Remote Dynamic Dependency RDD technique: the published package appears benign but includes a URL-based dependency in package.json pointing to an attacker-controlled C2 server npm.jpartifacts.com...

@klardaten/n8n-nodes-datevconnect (>=1.0.1 <=1.0.2), @n8n/task-runner (>=1.37.0 <=1.57.1) +15 more potentially affected by CVE-2026-21877 via n8n-core (>=1.0.0 <=1.120.1)

n8n-core NPM version =1.0.0, =1.0.1, =1.37.0, =1.0.0, =0.1.0, =1.0.1, =0.3.3, =0.3.1, =1.1.0, =0.1.4, =0.4.10, =0.2.0, =0.2.0, =0.1.0, =0.1.1 and more Source cves: CVE-2026-21877 Source advisory: SNYK:JS-N8NCORE-14894271...

Malicious code in rce-poc-test-honor-dev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b66eed52fc0c24b51f24da6c244c23fc29ce6228dd4a97a0606f71bb254f02b7 The package rce-poc-test-honor-dev was found to contain malicious code. Source: ghsa-malware...

Malicious code in musl-dev (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 921a96dbb105de30a891a3770c85b1a240ad3625bb52b4e6276340c641b4a46f Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Malicious code in ng-dev (npm)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in oclif-dev (npm)

The package oclif-dev was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: google-open-source-security 9cf078178f5da45231528dbb9bb1883266f18b9c8cd4784a7c8542a3c3d4de7b This package installs a dependency hosted on a custom domain that runs an info...

Malicious code in @ginger-dev/eslint-config (npm)

The package @ginger-dev/eslint-config was found to contain malicious code...

Malicious code in deep-dev (npm)

The package deep-dev was found to contain malicious code...

MAL-2025-7981 Malicious code in @ginger-dev/eslint-config (npm)

The package @ginger-dev/eslint-config was found to contain malicious code...

Malicious code in shopify-dev (npm)

The package shopify-dev was found to contain malicious code...

MAL-2025-32558 Malicious code in run-dev (npm)

The package run-dev was found to contain malicious code...

MAL-2025-18174 Malicious code in deep-dev (npm)

The package deep-dev was found to contain malicious code...

MAL-2025-32741 Malicious code in save-dev (npm)

The package save-dev was found to contain malicious code...

MAL-2025-6933 Malicious code in guppy-dev (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b56a4d108a100f12dd3aedb0e1f0f3b8007ecc181e366198a22242473696f219 The OpenSSF Package Analysis project identified 'guppy-dev' @ 2.0.0 n...

MAL-2025-6277 Malicious code in binance-dev (npm)

The package communicates with a domain associated with malicious activity...

Malicious code in bvox-dev (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2025-2565 Malicious code in airbnb-dev (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5e763bf852511956872170a0e0f35a90f9cded742c1b3e0f42b094bf3f13e224 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2094 Malicious code in bitget-dev (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c98dc8a8cb993a1e93d89d0909e8243bfd607c7a635f098ee3b3c103101cbcbe Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...