2052 matches found
Malicious code in wf-logger (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis f5d0387a0af7cf2983c45745f58fdce63df887bdfc8d5a401425e53ebd586199 The OpenSSF Package Analysis project identified 'wf-logger' @ 2.0.0 npm as malicious. It is considered malicious because: - The package...
MAL-2025-6877 Malicious code in wf-logger (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis f5d0387a0af7cf2983c45745f58fdce63df887bdfc8d5a401425e53ebd586199 The OpenSSF Package Analysis project identified 'wf-logger' @ 2.0.0 npm as malicious. It is considered malicious because: - The package...
Malicious code in geospatial-example (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 74393d640797f18f4e110cfb20f3f2be681c867e2383cfa386f78a3fad2065f8 The OpenSSF Package Analysis project identified 'geospatial-example' @ 2.0.0 npm as malicious. It is considered malicious because: - The package...
MAL-2025-6874 Malicious code in geospatial-example (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 74393d640797f18f4e110cfb20f3f2be681c867e2383cfa386f78a3fad2065f8 The OpenSSF Package Analysis project identified 'geospatial-example' @ 2.0.0 npm as malicious. It is considered malicious because: - The package...
MAL-2025-6875 Malicious code in webflow-extension (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 42b661acb4e76b31c10ac6138d3b67ef2606a39e5c0c291796f123ac6b232d93 The OpenSSF Package Analysis project identified 'webflow-extension' @ 2.0.0 npm as malicious. It is considered malicious because: - The package...
Malicious code in search-result (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 6ddb1c5d5505a20da7fa64201ed64cc4b487447debb5dfac4a7d1398b93bcb1a The OpenSSF Package Analysis project identified 'search-result' @ 10.11.0 npm as malicious. It is considered malicious because: - The package...
MAL-2025-6872 Malicious code in search-result (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 6ddb1c5d5505a20da7fa64201ed64cc4b487447debb5dfac4a7d1398b93bcb1a The OpenSSF Package Analysis project identified 'search-result' @ 10.11.0 npm as malicious. It is considered malicious because: - The package...
Malicious code in guppy-dev (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b56a4d108a100f12dd3aedb0e1f0f3b8007ecc181e366198a22242473696f219 The OpenSSF Package Analysis project identified 'guppy-dev' @ 2.0.0 n...
MAL-2025-6933 Malicious code in guppy-dev (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b56a4d108a100f12dd3aedb0e1f0f3b8007ecc181e366198a22242473696f219 The OpenSSF Package Analysis project identified 'guppy-dev' @ 2.0.0 n...
MAL-2025-6871 Malicious code in @azix058/design-system (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 00076e3fa2882cf70c07ddb3715929161c6cd4253e088b91f38c06d9612e5edc The OpenSSF Package Analysis project identified '@azix058/design-system' @ 10.0.0 npm as malicious. It is considered malicious because: - The...
Malicious code in @angular_devkit/build-webpack (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 053dbd5b72c824b5644482986fcc9a5caca48fcbe447f90f957e420418f2bcb4 The OpenSSF Package Analysis project identified '@angulardevkit/build-webpack' @ 99.1.1 npm as malicious. It is considered malicious because: -...
Malicious code in @angular_devkit/core (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis e71b8ecbb1a24ad2e952dddfe831edc984a60be61de846d61903baae55b376bc The OpenSSF Package Analysis project identified '@angulardevkit/core' @ 99.1.1 npm as malicious. It is considered malicious because: - The packa...
MAL-2025-6869 Malicious code in @angular_devkit/core (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis e71b8ecbb1a24ad2e952dddfe831edc984a60be61de846d61903baae55b376bc The OpenSSF Package Analysis project identified '@angulardevkit/core' @ 99.1.1 npm as malicious. It is considered malicious because: - The packa...
Malicious code in verizon-media-open-source-project-protal (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b5effa09096e10b22706af0dd8301a46baa8c707c7979154017d0493e25abf88 The OpenSSF Package Analysis project identified 'verizon-media-open-source-project-protal' @ 2.0.1 npm as malicious. It is considered malicious...
MAL-2025-6972 Malicious code in verizon-media-open-source-project-protal (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b5effa09096e10b22706af0dd8301a46baa8c707c7979154017d0493e25abf88 The OpenSSF Package Analysis project identified 'verizon-media-open-source-project-protal' @ 2.0.1 npm as malicious. It is considered malicious...
Malicious code in mint-backend (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 13804e154bae1eba072cd15e94a81c7d0e03e959552fd66f99f4c9de162b2db2 The OpenSSF Package Analysis project identified 'mint-backend' @ 2.0....
MAL-2025-6865 Malicious code in azure-documentdb-node (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 6ae212af083dc32114fe6584d59ab57ac5b5c3b77d59d83cd62af05f8706cdf0 The OpenSSF Package Analysis project identified 'azure-documentdb-node' @ 9.9.9 npm as malicious. It is considered malicious because: - The...
MAL-2025-6920 Malicious code in dagger-core (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 0d58316229ef10836cd767174ee076e5fc92d8e4cf13f52b4b4950853503434a The OpenSSF Package Analysis project identified 'dagger-core' @ 13.8....
Malicious code in solana-pump-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 45d581c17210e8be2e111136cc9853e7c698eaabd46c44482037ba1436c5b9a0 The OpenSSF Package Analysis project identified 'solana-pump-sdk' @ 1.4.0 npm as malicious. It is considered malicious because: - The package...
Malicious code in jenkins-trigger-action (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis fedbad1242e09329c414a95c493ce62c39c15cad4472ef5fc4a8b9b836834fb4 The OpenSSF Package Analysis project identified...