2044 matches found
Malicious code in fake-package-agpl-license (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 53470e96107ebc806b1a440821244a335389aca112b5752ce995ae87150b0b4d The OpenSSF Package Analysis project identified 'fake-package-agpl-license' @ 1.0.0 npm as malicious. It is considered malicious because: - The...
Malicious code in fake-package-apache-with-copyleft-dep (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis dccffa1d5f84a8476d98fd5eed5c0401aba753ef0916b506d1b8f9687029351d The OpenSSF Package Analysis project identified 'fake-package-apache-with-copyleft-dep' @ 4.0.0 npm as malicious. It is considered malicious...
Malicious code in dependent-package (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 70f70c2dd1e2fa144fb729148ad1259433561dcfc205e028a514ea1fc4c6a65a The OpenSSF Package Analysis project identified 'dependent-package' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...
Malicious code in genaiscript-core (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis bb751d77363fdcebae7c4876de9a26b85a29be3677d2de516fb1c4e9cfd244c1 The OpenSSF Package Analysis project identified 'genaiscript-core' @ 0.4.0 npm as malicious. It is considered malicious because: - The package...
Malicious code in @fake-registry/a (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 97c876bbfb1684701b8dc4481892093cd4c86a3dc718debe40811786e4175f57 The OpenSSF Package Analysis project identified '@fake-registry/a' @ 4.0.0 npm as malicious. It is considered malicious because: - The package...
Malicious code in parser-7.0.0 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 99ace32a9b913ac4a00ad574ac934c4eb6274d7c0cf3b948ced6b8191f511b68 The OpenSSF Package Analysis project identified 'parser-7.0.0' @ 4.0.0 npm as malicious. It is considered malicious because: - The package...
Malicious code in cli-pkg-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 7a7aae8c7f3c482a70cb9cd90ee7c66cdab49f87aea5f39075c02aef180ad54a The OpenSSF Package Analysis project identified 'cli-pkg-test' @ 4.0.0 npm as malicious. It is considered malicious because: - The package...
Malicious code in starter-assets-sass (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ba07492e2a8db9d81d2c52ee32e66ed5f4432091392b4e957b6974329bce90d2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in protect-and-track (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis edbed776bce4e13aa762ef261200997d2a94599f0c21be5b9bd765f20e83acf8 The OpenSSF Package Analysis project identified 'protect-and-track' @ 1.9.0 npm as malicious. It is considered malicious because: - The package...
Malicious code in operaextensions.js (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5b9207a219bcb0da9f09f2b9c49edc832107607c624e5d9b3daa16b4c7fdf3d3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in mozilla-central (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 6bee454a894c37c1ab6f11580801deac1455d7114675e371cdec10ed8966f562 The OpenSSF Package Analysis project identified 'mozilla-central' @ 1.1.1 npm as malicious. It is considered malicious because: - The package...
Malicious code in lookerbot (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4e153a83a07ee715f03496c2ce264b146ef89b95765fd90c48d01a49b7fa732c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in example-arc-server-request-local (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis f47e48a4969642e3e6ab7d39b5d8f25a7a6d7acf2bbeec054888cfeada839219 The OpenSSF Package Analysis project identified 'example-arc-server-request-local' @ 100.0.1 npm as malicious. It is considered malicious becaus...
Malicious code in azure-rest-api-specs-eng-tools (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 34ba9e800ce9823b7e1b4b90d47a87eafdfb783d616caa8a69bf93f55ee0a9b5 The OpenSSF Package Analysis project identified 'azure-rest-api-specs-eng-tools' @ 1.0.1 npm as malicious. It is considered malicious because: -...
Malicious code in webquickauth (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis e838cec17c1006b567e2a70f9554fd2a040c9fb0cfdf8d753e81548c1ea02c49 The OpenSSF Package Analysis project identified 'webquickauth' @ 2.3.5 pypi as malicious. It is considered malicious because: - The package...
Malicious code in wordpress-theme-core (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 11ba6949abd5e27add3ceeb9c4709ae17be63d4831af09c7f34ca236d3b06b8e The OpenSSF Package Analysis project identified 'wordpress-theme-core' @ 0.0.123 npm as malicious. It is considered malicious because: - The...
Malicious code in comet-chat-react-ui-kit (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 9a6f38c4d9dd2413e237c8d146d5fcf11d04f613910b552a32a52b3e4cf199f6 The OpenSSF Package Analysis project identified 'comet-chat-react-ui-kit' @ 1.0.1 npm as malicious. It is considered malicious because: - The...
Malicious code in draconianspeed (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b1212e40bb57fce7672f50431153645b13624cc1e2061b44c0b91fec275e7853 The OpenSSF Package Analysis project identified 'draconianspeed' @ 5.0.0 npm as malicious. It is considered malicious because: - The package...
Malicious code in delta0231 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 7df399fa1580fb8e64d7cd2481b0212f607aa8146a1b904b83a7af05ebb8031b The OpenSSF Package Analysis project identified 'delta0231' @ 100.0.0 npm as malicious. It is considered malicious because: - The package...
Malicious code in commando333333 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 3da17f518475bb94d3d0740d0e1fc486dcce1f4fd1c8f86b9578176c4ea04a03 The OpenSSF Package Analysis project identified 'commando333333' @ 10.0.0 npm as malicious. It is considered malicious because: - The package...