2048 matches found
Malicious code in tml-sso (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 847dbce1211be416799a06c22cc32901e282fd07fbb9d9b118b8763d7aa24b09 The OpenSSF Package Analysis project identified 'tml-sso' @ 10000.0.0 npm as malicious. It is considered malicious because: - The package...
Malicious code in elysium-checkout (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1d164cca14ffe6f3b767b73a34dd534c8b74f7d39d685e0630c29ff04f25fc5a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in trusted-firmware-a (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 3a6dc31ad91aec1f31822d8aced35d9645371c5e0194f3a4b7627a6753955769 The OpenSSF Package Analysis project identified 'trusted-firmware-a' @ 100.11.1337 npm as malicious. It is considered malicious because: - The...
Malicious code in wallet1-options (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 152e4326d8826107e6c4706758de644f8ac9a9785cd68f6f655461fd59016682 The OpenSSF Package Analysis project identified 'wallet1-options' @ 100.0.4 npm as malicious. It is considered malicious because: - The package...
Malicious code in example-marko-webpack (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 553d816403e5dd786bafbe39f79c521cc2e5bd1917b425aefd7d5f34c96400b6 The OpenSSF Package Analysis project identified 'example-marko-webpack' @ 100.0.2 npm as malicious. It is considered malicious because: - The...
Malicious code in examples-formic (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 074e879e97761583a22531a3d4f917977ac387e40c36bc5eb35e3f4b367db196 The OpenSSF Package Analysis project identified 'examples-formic' @ 100.0.2 npm as malicious. It is considered malicious because: - The package...
Malicious code in vscode-oja (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 222332856f685e334465b24346da36177ea57028e903aaf5c7b6fc845f1e601a The OpenSSF Package Analysis project identified 'vscode-oja' @ 100.0.2 npm as malicious. It is considered malicious because: - The package...
Malicious code in node-scoped-http-client (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 881ef5215aabb6e0d9dbaf7bbbdc6f804c031cb613c83b6fdb86f0efbc99d520 The OpenSSF Package Analysis project identified 'node-scoped-http-client' @ 2.0.0 npm as malicious. It is considered malicious because: - The...
Malicious code in pootle (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 02e85bef7e8a01d18636b40c7543cadd257472b0b984989ba4ca747f6c4c6f5a The OpenSSF Package Analysis project identified 'pootle' @ 9.9.10 npm as malicious. It is considered malicious because: - The package communicat...
Malicious code in morrrisjs (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 46dee7d1b7f802394446206cf8bff0d4b68b96cfc7aaf1196fffe3ce0c106af0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in novacredit-global (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e6fe3770a3715553aac610a4c183864336d469e9cd4e73d632c9cd788b3b1eb1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in cdpro-redux-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 59b127bc162a0536b8fbb2ed7957448cae7028afe71ee85c61504d88f1cf8a36 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in com.unity.visualeffectgraph (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 612fb4f703fb888029e1ae8bf1069fc5719a9288ee946e4210c5127c665c38d9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @nitro2/shared (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 140caf464a34fc34d7fea71e7561ee5849558b1ee1c7987c9a38c265eb22e4f9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in com.unity.formats.fbx (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 583302188f1d3c02ddb7580ef4df38be05d5acfe23e795966baa799cda4efa8f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in badgerdoc-storage (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 57170ed58e2cf5e3b4b32f443ae555c7c040f2a395b3505837c90e06add93db5 Packages that seem to be created by a legit bug bounty hunter. Designed to look like created by different organisations, they contain a couple of data...
Malicious code in dial-xl (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 129b71dc44955e560cd56ff53e0be19aced751699016fa96cb04ee75d2e76e3b Packages that seem to be created by a legit bug bounty hunter. Designed to look like created by different organisations, they contain a couple of data...
Malicious code in program-admin (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 79810d0cd56c8a3266dcbe5827dd3d27eb976b353c7b17940a29dddc602df4f7 Packages that seem to be created by a legit bug bounty hunter. Designed to look like created by different organisations, they contain a couple of data...
Malicious code in iconnect (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 e53aae69656f138607d0de8abe11d4b48ed6156875f07ec0da7485dd776f7158 Packages that seem to be created by a legit bug bounty hunter. Designed to look like created by different organisations, they contain a couple of data...
Malicious code in braze-i18n-knockout (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ca6ae5dbaa6927991987f0b0e26192dcbfc2fbcbeeca91e3cb34621bd6f1a48b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...