3 matches found
MAL-2023-265 Malicious code in django-yauth (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ae070c20f7fe6b1fb2f0563cc58a8822e6631547876b18e72e32ebee1a7afdb6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in django-yauth (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ae070c20f7fe6b1fb2f0563cc58a8822e6631547876b18e72e32ebee1a7afdb6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious Package
Overview django-yauth is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package was...