2038 matches found
MAL-2025-46891 Malicious code in actions-run-service (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 0096c4c86f75bd5815b589d90393b9d5efa12ac9fdae99a2cb6293475de0cbf8 The OpenSSF Package Analysis project identified 'actions-run-service' @ 0.0.1.r2301dc6 rubygems as malicious. It is considered malicious because...
Malicious code in diet_earthsmoke (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 83df3701a52a02b6ef7891d5d4151dbb02e7c649eb524a250a2992c625f82529 The OpenSSF Package Analysis project identified 'dietearthsmoke' @ 0.3.1 rubygems as malicious. It is considered malicious because: - The packag...
MAL-2025-46897 Malicious code in blackbird-client (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 17b0b3e98141a351fdc696be9f930f79cca353cc4bfdd71903e63226d07aac55 The OpenSSF Package Analysis project identified 'blackbird-client' @ 99.99.99 rubygems as malicious. It is considered malicious because: - The...
Malicious code in blackbird-client (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 17b0b3e98141a351fdc696be9f930f79cca353cc4bfdd71903e63226d07aac55 The OpenSSF Package Analysis project identified 'blackbird-client' @ 99.99.99 rubygems as malicious. It is considered malicious because: - The...
Malicious code in authnd-client (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 9da591ec2002916d80cd089745cfa963d18744916bf5db914f1fc0b14e117a5e The OpenSSF Package Analysis project identified 'authnd-client' @ 99.99.99 rubygems as malicious. It is considered malicious because: - The...
Malicious code in driftwood-client (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 82508ccb87ec67c0980aab22344944dc04b3526af72b41f9d9e7092c50c3b9c4 The OpenSSF Package Analysis project identified 'driftwood-client' @ 0.0.1.r1319997b9 rubygems as malicious. It is considered malicious because:...
Malicious code in aqueduct-client (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 379fca058a380a033332183e2ff704c2c9364d08fc8d550eb7a1f5171bc9221f The OpenSSF Package Analysis project identified 'aqueduct-client' @ 1.3.3 rubygems as malicious. It is considered malicious because: - The packa...
Malicious code in badge-ruler (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 34de70c9a9c01b43d1728b2a20d6eada0fe0a1e925866f4546057dc5fb7aa737 The OpenSSF Package Analysis project identified 'badge-ruler' @ 0.0.2 rubygems as malicious. It is considered malicious because: - The package...
MAL-2025-46907 Malicious code in feature-flags-client (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 26770c72a74ae8e621acc8084a53a285191b262988dd73d9e884c34025a362b8 The OpenSSF Package Analysis project identified 'feature-flags-client' @ 1.1.0.4.g5ec4367 rubygems as malicious. It is considered malicious...
Malicious code in diff-analysis (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 53f5c59231a450ff5c362e5a1f69715ca48a0ee311ba81d90daa03baef384a1d The OpenSSF Package Analysis project identified 'diff-analysis' @ 0.1.0.r8ff4356 rubygems as malicious. It is considered malicious because: - Th...
Malicious code in dependency-graph-platform-proto (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis c8feb4336c26b61a10aec616c9f9f8777fcdd99ab55df96c82ca78bd088530b9 The OpenSSF Package Analysis project identified 'dependency-graph-platform-proto' @ 99.99.99 rubygems as malicious. It is considered malicious...
Malicious code in delorean_client (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 91b594e6698684765fbf40d5f103e207d5e6166eeafd80ba5690100cab008a4c The OpenSSF Package Analysis project identified 'deloreanclient' @ 0.4.0.r09ee7b0 rubygems as malicious. It is considered malicious because: - T...
Malicious code in console_auth (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 8c545bd0ca0111537f9336af6eeeef4e580a90a7468ff22cf9b1b20dd3fcf51d The OpenSSF Package Analysis project identified 'consoleauth' @ 99.99.99 rubygems as malicious. It is considered malicious because: - The packag...
MAL-2025-46902 Malicious code in dependency-snapshots-api-proto (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 631057766f092650ba1257605bb896b689804a362934a08e7354ca7253f43b77 The OpenSSF Package Analysis project identified 'dependency-snapshots-api-proto' @ 99.99.99 rubygems as malicious. It is considered malicious...
MAL-2025-46908 Malicious code in github-kredz (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 537bf1dc9a46b4e69b596275e61de6d1b75ca3eeb2979bde507688f07458c088 The OpenSSF Package Analysis project identified 'github-kredz' @ 1.0.1.1135.gf4a4623f5 rubygems as malicious. It is considered malicious because...
Malicious code in esm-package (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3efe53ebf45af2f0e8bd58b829f79db6f064cef648ae981ea86a7e24b77a39d2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-41821 Malicious code in esm-package (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3efe53ebf45af2f0e8bd58b829f79db6f064cef648ae981ea86a7e24b77a39d2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-41819 Malicious code in @hpx-core-experiences/react-my-account-commons (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 07356e94cbef647858d04baaf3188c3c72ea8ba194c69b6000d0674ccaa1ac71 The OpenSSF Package Analysis project identified '@hpx-core-experiences/react-my-account-commons' @ 11.0.1 npm as malicious. It is considered...
Malicious code in @hpx-core-experiences/react-my-account-commons (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 07356e94cbef647858d04baaf3188c3c72ea8ba194c69b6000d0674ccaa1ac71 The OpenSSF Package Analysis project identified '@hpx-core-experiences/react-my-account-commons' @ 11.0.1 npm as malicious. It is considered...
Malicious code in teshf (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 3f642b49ede39ace29404ba39116e182c46ab9f2d41475cfeb10acae870caa89 The OpenSSF Package Analysis project identified 'teshf' @ 1339.0.0 npm as malicious. It is considered malicious because: - The package...