1842 matches found
Malicious code in tempomati-omega-5-emcuf5 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 6f86820db1cc72b3ab2076578417815de7e0bc83b54e954f68b41a7adf28dd66 The OpenSSF Package Analysis project identified 'tempomati-omega-5-emcuf5' @ 1.0.1 npm as malicious. It is considered malicious because: - The...
Malicious code in rb-notification-banner (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis faed09cda269c58908aa898798259bd292fcce98a8f5a60f486a4c26bb84d15a The OpenSSF Package Analysis project identified 'rb-notification-banner' @ 1.0.0 npm as malicious. It is considered malicious because: - The...
Malicious code in donuts.node-build (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 6b8d6fee5827de9688cc9b83812dc32e54e33531a0bd2fd179dc3e2935564dc7 The OpenSSF Package Analysis project identified 'donuts.node-build' @ 99.99.104 npm as malicious. It is considered malicious because: - The...
Malicious code in thisisjustfortesting (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 59cdc01afa05cd90c8814ecd8dd94f555b32681004eabf13194d1f7b6c52d4f9 The OpenSSF Package Analysis project identified 'thisisjustfortesting' @ 1.0.2 npm as malicious. It is considered malicious because: - The packa...
MAL-2023-1322 Malicious code in thisisjustfortesting (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 59cdc01afa05cd90c8814ecd8dd94f555b32681004eabf13194d1f7b6c52d4f9 The OpenSSF Package Analysis project identified 'thisisjustfortesting' @ 1.0.2 npm as malicious. It is considered malicious because: - The packa...
Malicious code in bjss-atp-web (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 7046ba13fe73d317a4a8d1b70db5fcb53d3b4e6c05b9682fa438e6dc855834ea The OpenSSF Package Analysis project identified 'bjss-atp-web' @ 9.0.3 npm as malicious. It is considered malicious because: - The package...
Malicious code in parallel-workers (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis abf4ac32d4bbbf2bca51efed2166f670c707230f7da2b87c1318cbe8ca9dade1 The OpenSSF Package Analysis project identified 'parallel-workers' @ 99.99.101 npm as malicious. It is considered malicious because: - The packa...
Malicious code in redirect-support (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis d6c36381ca8139def8823ca52a07b58b0dc131a8960f3deb17f749cbe3870794 The OpenSSF Package Analysis project identified 'redirect-support' @ 1.0.3 npm as malicious. It is considered malicious because: - The package...
Malicious code in @expressions/excel-functions (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 0f285f6202227757b1ae10391ea069ae841e5b19a58529e5ce7b0f0a37e48c91 The OpenSSF Package Analysis project identified '@expressions/excel-functions' @ 3.0.0 npm as malicious. It is considered malicious because: - T...
Malicious code in kuna-chart-header (npm)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 7b6783077178ab41482bc0e611e487453d9b0254e1e1ad5684b89472b002b2b4 Malicious packages campaign since 2021 targeting developers, steals source code and secrets Source: ghsa-malware...
Malicious code in @chegg/wtai-upload-widget (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ed3e4233e6f2d188d7f2bab940bf8574017cf73a97b440daddc7f4e3176075a3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in fc-account-selector (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e2a2b9137afe6979e5b25e3e2aba4da1a9152feee7e21f1fc61c909273642d2c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in test-npm-com-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx eb86ecfecc56220476e3c33bd4f86f95c17be6c7a9a7a3cdc9ca822205076380 Malicious packages campaign since 2021 targeting developers, steals source code and secrets Source: ossf-package-analysis...
Malicious code in mypy-action (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1e1b919537a89780d36cd0352b5a2a78fb75def0b31c115111e26acb0c979c0d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in wall-e.api (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7317689c13174693567501f3ef7699b95a22d64ca1c24ee435cea015afcd38a2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ticket-parser2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ee92fd5b97c5234a0a301b915037b0f7285c820216158c9bef86dc7c08e16661 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ytreader (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6a69dfe4d469d389b8db7b4e27084c0d17aa03c753dc0336a622e08402e04b24 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in startrek-client (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 677916f3c3652c9c9adf72499bd52d0411e53c57df7ff1a301df7dfb9d64474d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in errorboosterclient (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f6ad53c61c65de783410bb712f1628578d9bb4ce0e63f7bd2acd059433433392 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in django-template-common (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b8a4058c9a8f986347dd22fe461b25c3ae525959ed7a05da257b79c7aa4d9aad Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...