521 matches found
Malicious code in org.mvnpm:posthog-node (Maven)
--- -= Per source details. Do not edit below this line.=- Source: google-open-source-security ea90a5928d7667bed4fa9f6effbbe6c8d3ad6521ca51ca2b01551bc02373a7d2 This package was compromised by the Sha1-Hulud: The Second Coming NPM worm. The malicious payload steals tokens and credentials and...
MAL-2025-191468 Malicious code in @lokeswari-satyanarayanan/rn-zustand-expo-template (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 73fe3bd99e2f11ab8bb09a9086c4dca8af56372031492ed11d90f1e32a0e8f53 The package @lokeswari-satyanarayanan/rn-zustand-expo-template was found to contain malicious code. Source: google-open-source-security...
Malicious code in @oku-ui/toolbar (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 03a495471a804035cd3e91e35335246931ccea65636ad279226ab2a39b0f1283 The package @oku-ui/toolbar was found to contain malicious code. Source: google-open-source-security...
Malicious code in pkg-readme (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bfc479ddf04c9b4dccdd1b190ab6a553b8b70b35dd010db9a2f6facee0990c78 The package pkg-readme was found to contain malicious code. Source: ghsa-malware 1367f46db577db5123a8d208e0f5d172747a39e623e7c33db0a7e240d28f9d2a Any...
Malicious code in @oku-ui/portal (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d0711033d654f75b42d8959721555bcf5aa5fb766ccc12b6e89c56eef0d8cafd The package @oku-ui/portal was found to contain malicious code. Source: google-open-source-security...
Malicious code in @oku-ui/checkbox (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 85b761a46dff9ea0ec6705cfe75221ceb7a3adeac0b4a2954618b3b069db3824 The package @oku-ui/checkbox was found to contain malicious code. Source: google-open-source-security...
Malicious code in @voiceflow/verror (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 81b5a50b0295fd87094117e38841e99bba0c11d47626ee9ced19ea9e7547d08e The package @voiceflow/verror was found to contain malicious code. Source: ghsa-malware...
Malicious code in @huntersofbook/core-nuxt (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 55edac19ed06e3c91521ad4302f6089a2c2443807f93bf209a4e111a86a09b3a The package @huntersofbook/core-nuxt was found to contain malicious code. Source: google-open-source-security...
Malicious code in @huntersofbook/ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 864ad7e5ee11e8337962d5e5ae089ecddbc48e77c50611aadbdab9feb097edfd The package @huntersofbook/ui was found to contain malicious code. Source: google-open-source-security...
Malicious code in @posthog/postgres-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 10be24eebbc464a61788d5c151ce03171d4abe4b1cd7f27972fef642fc46deda The package @posthog/postgres-plugin was found to contain malicious code. Source: google-open-source-security...
Malicious code in @productdevbook/animejs-vue (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c2acfd4cc90c6efaba5b4ac9fffbeb99c09185946aa16771401d7227d137c24 The package @productdevbook/animejs-vue was found to contain malicious code. Source: google-open-source-security...
Malicious code in @silgi/scalar (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 718db30ae906e5148f4892029a4e6e20c813dfa5ef8eb9a76a46b1c1769445d3 The package @silgi/scalar was found to contain malicious code. Source: google-open-source-security...
Malicious code in @posthog/intercom-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 12c972a0fa0f1cf26c3a80f626651c44d7d2b9021694b8e4f965ff35b56b0429 The package @posthog/intercom-plugin was found to contain malicious code. Source: google-open-source-security...
Malicious code in @actbase/native (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 328d7b0db77bbbc8012f6aee1eec6c2c15d1fec187573be00958308bceaf3b13 The package @actbase/native was found to contain malicious code. Source: ghsa-malware eb78c3f4eb3df2581ae53c6b6c46aa1d14c7a6027fa4f248b1e2b15763763ed...
Malicious code in @voiceflow/voiceflow-types (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64870c57f06fc059636a3136cce3f775121952fa37459d740810067378d88c0e The package @voiceflow/voiceflow-types was found to contain malicious code. Source: ghsa-malware...
Malicious code in @posthog/filter-out-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e29182ef33e7d24b6f775624daaa2eb546ce24fe4d768adf7c561c4e7084d5ff The package @posthog/filter-out-plugin was found to contain malicious code. Source: google-open-source-security...
Malicious code in tcsp (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 87eea4bd57bbebb33eeecbb27a8edc34b1d09d5914c17e5d83cf150592ca3d4f The package tcsp was found to contain malicious code. Source: ghsa-malware 9afc354e57e9ee04a013163cd035cca48961c86cae95519fb5c4882c730a2808 Any...
MAL-2025-191396 Malicious code in gatsby-plugin-antd (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1db5c29950300909f2a9571826a482e10a6ce45dae9529f28ad87ddc2b98119b The package gatsby-plugin-antd was found to contain malicious code. Source: ghsa-malware...
MAL-2025-191187 Malicious code in @antstackio/eslint-config-antstack (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector df3b34f284b315d21cd0f6b7ea57e1fc8b908ade13ffde115d3fb1f6727c7d4a The package @antstackio/eslint-config-antstack was found to contain malicious code. Source: google-open-source-security...
MAL-2025-191445 Malicious code in v-plausible (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6aed8dcc55b812ae7b489eb98ff12b0714a8b37eb43ef61199484fb4cc93b6c6 The package v-plausible was found to contain malicious code. Source: google-open-source-security...