2 matches found
Malicious code in diesel-site (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis bb78d01ad7ff8d210d59657017d35725abab41a1e59657ff43ac4ac0889ac493 The OpenSSF Package Analysis project identified 'diesel-site' @ 99.9.1 npm as malicious. It is considered malicious because: - The package...
Malicious Package
Overview diesel-site is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package was...