MAL-2026-2733 Malicious code in buildkite-test-collector-jest-example (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b6fa2618170566c342534726ad9c855cf62ad98ee9b6e815e5324c5bc4779da2 The package buildkite-test-collector-jest-example was found to contain malicious code...

EUVD-2025-36828

Malicious code in jfrog-npm-actions-example npm...

Malicious code in example-legacy-customer-account-flow (npm)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in arkose-labs-react-native-example (npm)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in lge-example (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 50473c9040c0e421b0ed196c99328de623d76a92ca2a5585abbb9e95c71e33c0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-1108 Malicious code in deferred-example (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 38dc68c75cb202e1290f22eb1e64cef5c216402392a2e18f51514c56b50134de Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in deferred-example (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 38dc68c75cb202e1290f22eb1e64cef5c216402392a2e18f51514c56b50134de Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2024-43485

A flaw was found in dotnet. In System.Text.Json, applications that deserialize input to a model with an ExtensionData property can be vulnerable to an algorithmic complexity attack, resulting in a denial of service. Mitigation Red Hat has investigated whether a possible mitigation exists for this...

Malicious code in example-package-taxi-etl (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis cc9af8fd35e3ce951b8d314b087c20afbd1ed1eeb3ff9441b0ea5d5ac5576e5a The OpenSSF Package Analysis project identified 'example-package-taxi-etl' @ 0.0.3 pypi as malicious. It is considered malicious because: - The...

Malicious code in charting-library-react-example (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8cba3185261bbaca364e13eb20f22442df73c6fa2a62f6387cb1a6215d99ecd1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...