Malicious code in amhairc-web (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 13d3cfae40288462dfd8b822c93d41e65a99b5d16d94e0c3ba536eaf9b5ee0bd The OpenSSF Package Analysis project identified 'amhairc-web' @ 6.0.0 npm as malicious. It is considered malicious because: - The package execut...

Malicious code in gatecrash (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 763f1f221e08f4de4ac758d78eb73e70fc818031913727c20ef6053f65c402d4 The OpenSSF Package Analysis project identified 'gatecrash' @ 10.999.0 npm as malicious. It is considered malicious because: - The package...

Malicious code in bbc-iplayer-sounds-chatbot (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 2d586de5a3bb31f4049fd207aa2c3ffc23d175a74c56bc0a75c52fd116f5291a The OpenSSF Package Analysis project identified 'bbc-iplayer-sounds-chatbot' @ 5.2.3 npm as malicious. It is considered malicious because: - The...

Malicious code in pmd-github-action (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 25570da8772dbadd784a50cef765f49e039bdd693711fa519447931729c5ec72 The OpenSSF Package Analysis project identified 'pmd-github-action' @ 7.2.9 npm as malicious. It is considered malicious because: - The package...

MAL-2023-8123 Malicious code in @apps-common/ui-theme (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis efafe7e60f7bde7ddddd2cdd0c5464da613f467cef65d985b5984f75a323a349 The OpenSSF Package Analysis project identified '@apps-common/ui-theme' @ 10.1.0 npm as malicious. It is considered malicious because: - The...

Malicious code in @apps-common/ui-theme (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis efafe7e60f7bde7ddddd2cdd0c5464da613f467cef65d985b5984f75a323a349 The OpenSSF Package Analysis project identified '@apps-common/ui-theme' @ 10.1.0 npm as malicious. It is considered malicious because: - The...

Malicious code in centurylink (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d96a2f3ad371aca3dc5bd6bf227819ee63ad00b7b1283b8280dd49497d8f8590 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in subspace-relayer-front-end (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f5ba5c7d050a216acda3025b0567509efd95f5e86479d47815a1b37ee74553dd Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in adidas-data-mesh (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cdd001e6013b356683b2fea45497d02787519396582fbe22102e0618a79380fe Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in payment-react-component (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1be5313ebc025cf120f74736aba05ea6e53d94fb39c36b1097c2803a7f7d70de The OpenSSF Package Analysis project identified 'payment-react-component' @ 1.5.0 npm as malicious. It is considered malicious because: - The...

Malicious code in tv-front (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 8a88b2209a83693fc932980b18e993f063b640485d2ba1553fb258374e9d7d9c The OpenSSF Package Analysis project identified 'tv-front' @ 1.1.0 npm as malicious. It is considered malicious because: - The package...

Malicious code in @get-bridge/tapestry-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis bc1d41f48feb6046e7a27f7a15290bb4b1b479f102ed0d6ebd6cdc4bc89d8210 The OpenSSF Package Analysis project identified '@get-bridge/tapestry-sdk' @ 99.99.991 npm as malicious. It is considered malicious because: - T...

Malicious code in npm-random-gen (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4e52ede67a495176f0c0e0501c905f88aca3d270ae33cea9490c1f1dfe9bcef8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in zara-mkt-core (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 63035f09a78f784aa3cc30ea29d7a7508c1811c6f344d00b42e93338f2cb50c5 The OpenSSF Package Analysis project identified 'zara-mkt-core' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...

Malicious code in vesper-synth-user-lib (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3b63b940eccf15e831893fd295775cbbbee43515d20e431b70389d8775292f57 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in metronome-synth-info-lib (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9e99092c601ede7db26a42e21544d65cff430ba4d36d1a76232973801b8d3fec Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in www-ankr-com (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 85d24b010e3938b6a72218999a497d5a519ab8c4422e0f1d8fef66d103f92ef4 The OpenSSF Package Analysis project identified 'www-ankr-com' @ 2.0.10 npm as malicious. It is considered malicious because: - The package...

Malicious code in master-oracle-lib (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1b5d683c33e479ccc6ca6bb739fae7fc1a6d64781f08d95866becdfdd08e26fb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in chain-list (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fe5c6ddc619ecf45531efce44ef718865eb6f689b196a3ea770934897790c4b3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in fiji-core-foundation (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 030c12f26f1b90ddf92e5edd56243d4b0a357d44d867c5ee071e544a490011a0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...