Malicious code in mistral-workflows-plugins-webhook (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 e87825efe9006ca3d435869b276f0d8526a1255ec71ac6e7aa0ea1bb068b6673 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

MAL-2025-47401 Malicious code in igame (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 92630c29a80ab3e4195e1528efb3bd2de3c21723225eeec79687f40648f15b42 Any computer that has this package installed or running should be considered...

MAL-2025-6129 Malicious code in spring-context (npm)

The package communicates with a domain associated with malicious activity...

MAL-2025-5755 Malicious code in tutorial_front (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c8c37adc01a1128e0458364194c6aae8faaeb4f5ce55cfe0aee587ea5d5fc751 Any computer that has this package installed or running should be considered...

MAL-2025-5593 Malicious code in @emersonecologics/emerson-angular-trove (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c229693a6cfa1c30c9c957144ab93c804e134a54c587ad75b4e2eb860d89b778 Any computer that has this package installed or running should be considered...

MAL-2025-5352 Malicious code in @unkn0wnartist/h1-poc-test (npm)

The package communicates with a domain associated with malicious activity...

MAL-2025-4746 Malicious code in infra-metrics (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e834dce6687a994025a897f7ab4b0c72fb30033eafd9999cbea3608f5eb6a268 Any computer that has this package installed or running should be considered...

MAL-2025-1677 Malicious code in pages14.0.0_i18n (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware eaed3f8870b4796bd4fc8667ec8911ddba466acaed945970ce6cf2f67e2630a0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in coinbase-service (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 10ee2dbfcb931534dd6bde1724a8a1c8a687f682a638caf4dfb5750a259402de The OpenSSF Package Analysis project identified 'coinbase-service' @ 999.9.9 npm as malicious. It is considered malicious because: - The package...

MAL-2024-11166 Malicious code in eslint-config-sunset-nodejs (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 042f734df520ee49c1cf44e40629e136159746964c87533d226f02be765e956e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-10871 Malicious code in upload-to-shopee-cdn (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f0d232d64d72c8cb600a13c7290d7c930b1062ba6ab4ebe1fbdab4130393473b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-10794 Malicious code in seller-base.preview (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ddbcbd39fce83a9480abaad12bba49d263092e47fd23fb79d8058735439f16bf Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-10775 Malicious code in react-is-16 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 66059d9e879f615ec449be8496988b1e02f5bfdcf0ba355c2fba23a87777b494 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-10719 Malicious code in libnpmpublishing (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 000ac1f9e3e24873823d90fa6c4785583e0f65c86d7c26847dd8819079f1e6e7 The OpenSSF Package Analysis project identified 'libnpmpublishing' @ 99.3.5 npm as malicious. It is considered malicious because: - The package...

MAL-2024-10766 Malicious code in people-ats-common (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 64e0fee4f6a0a0bf955286caec236cb6fd226322649fd02497b95d91f14b4f7c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-10674 Malicious code in listing-devtools (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9721f8e927e787ea57b202a8a5b29ab1fd0cd530861055ad6a3e36a1c0df8d9a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-10631 Malicious code in hackerone000001 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8afd5e171e8a45a3d333e0d64cf1376ee51009fa4b030aaecd0437111bc57b10 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-10459 Malicious code in shadokv (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 50a86371d91df819e5ed74554d58457de377043882b8ba9f98f71b7abfa006e4 A campaign of probably pentest packages flooding PYPI. Installing the package or importing the module triggers reporting basic info like hostname, path and the...

MAL-2024-10738 Malicious code in importlibs-resource (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 e5b18ca50565bbf39ba25d92703302ffabb63cb0a0d6fde1934437d016d4cc0c A campaign of probably pentest packages flooding PYPI. Installing the package or importing the module triggers reporting basic info like hostname, path and the...

MAL-2024-10481 Malicious code in cs-deploy-helper (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bc924b01d9d1492c726482e9cfb4985b29cfd9c8771d907af44c2d7351d1ff36 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...