2038 matches found
MAL-2025-41433 Malicious code in uitk_hb_button (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 78827a994bce4fe2727c49ef451312308ad218c90e040d3ffec05b50385a488f The OpenSSF Package Analysis project identified 'uitkhbbutton' @ 99.99.1 npm as malicious. It is considered malicious because: - The package...
Malicious code in uitk_hb_button (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 78827a994bce4fe2727c49ef451312308ad218c90e040d3ffec05b50385a488f The OpenSSF Package Analysis project identified 'uitkhbbutton' @ 99.99.1 npm as malicious. It is considered malicious because: - The package...
Malicious code in uitk_i18n (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis fc864b28374d03fb38eaeac8bc4b8479334114789acb4be7c5f43a9a738d990c The OpenSSF Package Analysis project identified 'uitki18n' @ 99.99.1 npm as malicious. It is considered malicious because: - The package execute...
MAL-2025-191939 Malicious code in xx-ent-wiki-sm (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 5ebf0745c51c955dbe898efb0f6b721f30dd75edc24b4ee234e8574cee3da9d3 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in selenium-stealth-utils (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 b7721bb039c55a43bd1dc81dfad14494df158912f9dda006a67881ce54be64d3 During importing, a malicious executable is being downloaded and started. According to sandbox report, the executable is an infostealer of rhadamanthys family...
MAL-2025-41348 Malicious code in byresfsdfdsdf (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 0b1380ef63b7b2c52e98cf7f5aebaa23316da368c8a3f7a00faf0e36b8fa8472 The OpenSSF Package Analysis project identified 'byresfsdfdsdf' @ 2.3.2 npm as malicious. It is considered malicious because: - The package...
Malicious code in byresfsdfdsdf (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 0b1380ef63b7b2c52e98cf7f5aebaa23316da368c8a3f7a00faf0e36b8fa8472 The OpenSSF Package Analysis project identified 'byresfsdfdsdf' @ 2.3.2 npm as malicious. It is considered malicious because: - The package...
MAL-2025-41428 Malicious code in depconfusioncheckdontuse (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 418af2d7f71a71a583c43b84d18214ede68763f87513cb692962a4567ff24cdb The OpenSSF Package Analysis project identified 'depconfusioncheckdontuse' @ 1.2.1 npm as malicious. It is considered malicious because: - The...
Malicious code in my-first-npm-package-1337 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 622f63f2210c8958193f9ce9c83001c67fc6cf798441e7235c0aa4c7f1efa82f The OpenSSF Package Analysis project identified 'my-first-npm-package-1337' @ 1.0.2 npm as malicious. It is considered malicious because: - The...
Malicious code in initialtestingdonotpull1235 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 638020a87c6e1aaf4b8542a5b20723a6ed900b986bfd407c8bf55aad3016933f Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
MAL-2025-41435 Malicious code in initialtestingdonotpull1235 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 638020a87c6e1aaf4b8542a5b20723a6ed900b986bfd407c8bf55aad3016933f Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
MAL-2025-41332 Malicious code in theme-rushstack-suite-nav (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 074f653dbf45333a4bcc8de28235ca35817a8f8c9e06e26b07010a325b039aa7 The OpenSSF Package Analysis project identified...
MAL-2025-41337 Malicious code in typescript-5.5 (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 70bfac6ea5776cab9b4409cf0cd8df1da9f3e392b98d2b36c60a1b65e94297fb The OpenSSF Package Analysis project identified 'typescript-5.5' @...
Malicious code in typescript-5.5 (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 70bfac6ea5776cab9b4409cf0cd8df1da9f3e392b98d2b36c60a1b65e94297fb The OpenSSF Package Analysis project identified 'typescript-5.5' @...
Malicious code in this-should-be-ignored (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b64896576ac7254afb7e1202835ec4f39b5b64af2cb380a7bf3b172deba75497 The OpenSSF Package Analysis project identified...
MAL-2025-41333 Malicious code in this-should-be-ignored (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b64896576ac7254afb7e1202835ec4f39b5b64af2cb380a7bf3b172deba75497 The OpenSSF Package Analysis project identified...
MAL-2025-41342 Malicious code in typescript-6.0 (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis c0cd1eb2749ce618a7dbf198dab8918ade0798770a8b15d51e27738bd05f3cd0 The OpenSSF Package Analysis project identified 'typescript-6.0' @...
Malicious code in typescript-5.4 (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis ebff3cac791b9745fe1807a98ab1bf33dcd334bba210634fd691d4451d50f179 The OpenSSF Package Analysis project identified 'typescript-5.4' @...
MAL-2025-41336 Malicious code in typescript-5.4 (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis ebff3cac791b9745fe1807a98ab1bf33dcd334bba210634fd691d4451d50f179 The OpenSSF Package Analysis project identified 'typescript-5.4' @...
MAL-2025-41334 Malicious code in typescript-5.2 (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1803c655ae363bcacfef82a893fa08357e9bc24ffb87b7f52e3de33d2b2de827 The OpenSSF Package Analysis project identified 'typescript-5.2' @...