Malicious code in just-config-data (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 8f014f07f8a3583cf07008dc133b2276390b17d34f6eae237b48210437247544 The OpenSSF Package Analysis project identified 'just-config-data' @ 0.0.3 npm as malicious. It is considered malicious because: - The package...

Malicious code in vscode-spring-initializr (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware eade5f13d9d6cf7678dfdf2bac67cfc29db071d6d1682cc6b3aadeac7561e30f Any computer that has this package installed or running should be considered...

Malicious code in composer-bin-plugin (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 036dd51bd9e780aa61c787fea9cd7fe31f583824332caae73063187ceb1056b5 Any computer that has this package installed or running should be considered...

Malicious code in buck2_explain (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 373ecef71383664f4c6b0f16f64e2e99413cbd225df32594d6531fe79293b2cd Any computer that has this package installed or running should be considered...

Malicious code in com.google.play.appupdate (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f3947330cc41713516ed88cb21b4ee7eb95b9b59d534811223a3bb3d9b696b24 Any computer that has this package installed or running should be considered...

Malicious code in pakumaku (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 900b8179fb7ecc8121b77921a5a6c394547bd506367aed2bc638dbc82985396e The OpenSSF Package Analysis project identified 'pakumaku' @ 9.9.9 npm as malicious. It is considered malicious because: - The package executes...

Malicious code in traceviz-angular-core (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware dd91335d1e9106d7a9f2dfe3a76ecdb4e4cf5008dc0da1a864d0e1a084f3f1ec Any computer that has this package installed or running should be considered...

Malicious code in zora1abs-mintflow-helper (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1d18f03821ee80a129d0fab4014577a7daa8dcbfa000f6b9c8632a0d311b2af0 Any computer that has this package installed or running should be considered...

Malicious code in zora1abs-protoc01-sdk (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5e1f6f2a0db6c265885a73e2231e1e0b8b7498988fcbeb1acb543de2ff113770 Any computer that has this package installed or running should be considered...

Malicious code in automated-native-creatives (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0108e88450eb534afdbdfd274f6737a7507f4a7915230a113296f63a2a2163fd Any computer that has this package installed or running should be considered...

Malicious code in zora1abs-co1ns-sdk (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b206060bd52cecf8193f550d58c64d304f0f31ca11f58b0252f883bb574b41c8 Any computer that has this package installed or running should be considered...

Malicious code in com.unity.dt.app-ui (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 22edbd19ec2c1688066d58a9c5836e4bcd30e7c64221187b158ccd8b65895932 Any computer that has this package installed or running should be considered...

Malicious code in routerprovider (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4bb5da39b59767e758d61cc281539a1860fb4914fc3b6a63e5bb7adfc9a4e12e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in plugin-proposal-private-methods (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0c0bb5e1a8b40dd1e99594481c6671cd4b01e1864b590ece14a07e6b241af7bc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in cmp-spid-login (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis f4229460b134c6c1fe4e3accbf1756e1706643a8d37bfd8a3cbe2817c11d4ced The OpenSSF Package Analysis project identified 'cmp-spid-login' @...

Malicious code in volehai-poc (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 695b1f1647ff88855017c178d47ab04527b14c3817e9b4ed343c1220cc7b18df Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in os-apps-ui-curvelibrary (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 0119e0d30c93e83b68f00c9ab5d2f00f90d631cf3e692cab103e99c3ca6331b5 The OpenSSF Package Analysis project identified 'os-apps-ui-curvelibrary' @ 11.1.20 npm as malicious. It is considered malicious because: - The...

Malicious code in frontend-tests (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 84270f7cb41eec813ccd947f1510d8849dc7ec317990d0be20450a14a28d69e0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in vite-plugin-esm-federation (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c1f7926dff38c759aa63ad9b55035d541c0512f6796681961dcd734e4d77cacc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in connectnodewebclient (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 72fc085bcccf174a0e94231d33f82e278941f6a8b7d9fa72f1f83ae85902b993 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...