2048 matches found
Malicious code in ownyourcode (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis ae49ecc59ae81e10af1589cca5d026e0fb03269a4490c4934d61934a157d7b86 The OpenSSF Package Analysis project identified 'ownyourcode' @ 12.1.1 npm as malicious. It is considered malicious because: - The package...
Malicious code in fullscreenify (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5d13d5a4c5d70ad749505a86402ab37e870dcbfcd8ea1c72ca6b754823852c78 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in azure-boards-estimate (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5462c61b481e30b0b6520e0b577f7617782f0e214162c66ab8adbe0c21dfbcb9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in grafana-metricsdrilldown-app (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 76f0bf52430819b26f7b4042daedcdd27b0b6dcc7278385dac6989be16b987de Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1673 Malicious code in dependencies-poc (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 2c3ca96aa79b3d1be281fd751a05f4550a914026dcfd52672223bb466cf6e3d6 The OpenSSF Package Analysis project identified 'dependencies-poc' @ 1.0.1 npm as malicious. It is considered malicious because: - The package...
Malicious code in dependencies-poc (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 2c3ca96aa79b3d1be281fd751a05f4550a914026dcfd52672223bb466cf6e3d6 The OpenSSF Package Analysis project identified 'dependencies-poc' @ 1.0.1 npm as malicious. It is considered malicious because: - The package...
Malicious code in snap-design-system-icons (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bad4c0b89835a8fe7ca332902590a3ace5d2889d12e2d3cde10ee5dc5c695d54 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in bahamazing (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1f74a7acba34cff5cc3fc70e44b94822e3fbf03bed544068a6d96b4eb4f9b067 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in reproduction-hardhat (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5ff49260182fa6026d9c786cbe4327341440dc9cea5e33c43d1687ed1effe699 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in rdocs-light (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5d1b6fac6abdefe443e0bc5cf7425f5b8dd8b32080d8e429eb9c2031ca18b059 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in react-native-survicate (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9bc16cb68d62d1ff95179e3f34e2afa8a62648c8cf9a10e9de12a9d1ec4e4abe Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in sip.js-v2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware dc79a8a90b9e2756012e6ea436db1bc15c17b4596bcedc556ce70cfd8800d99c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in azps (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a6c955269826233e665b0f2e27c31b025ab3e5ab1ff1a46049d06df4c02d5a48 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in secureshield4 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8f23bae727a469f26985689c3f9d59601b7bfd53e52b3cf2b271a56941e37af5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-191833 Malicious code in pydefender (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 a1e2cc2d94eff74e302118c35c34f87e76175fe507facbe21c29883960c8223e setup.py is prepared to download and run an obfuscated batch script. While the script is not detected by any AV currently, in the sandbox analysis it reveals...
Malicious code in doitoml (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7c92ab9b950fef1f567faa52993a2c800c38e041919a32cd64538a9aef8ecb16 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in local_editor_top (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 76950599e5b37eafb90ddff61774b4fc890522176ea70d8e9b18b99b7545f9ec Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ark-boostrap (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 03a498b564f81996bedc4aae91489b170bd4479c5e696b00a8e467ecc39f02c7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ufarm-evm-contracts (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ac3c2b22abdad36913f270ded803406db0e6492f6747ca9177aeca19cd36aab1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in huma-contracts-v2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ffcd8e55c63708841725749619d1aa01ac52fa1345eab2c6dc53f3b9f2615581 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...