2038 matches found
MAL-2025-41289 Malicious code in health-cards-validation-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 83454ca0e6e018fdcd3684ad0e163a9220a0e5a2619ea5d348092076d83755e5 The OpenSSF Package Analysis project identified 'health-cards-validation-sdk' @ 99.0.9 npm as malicious. It is considered malicious because: - T...
MAL-2025-41291 Malicious code in heft-example-plugin-01 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 38de8533a1fa4ae454f1c4c690239b429820ddf54aa69925be16c418d54f6a2b The OpenSSF Package Analysis project identified 'heft-example-plugin-01' @ 99.0.9 npm as malicious. It is considered malicious because: - The...
MAL-2025-41290 Malicious code in heft-example-lifecycle-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis fce75dcff1360927b5ed18017c2b53424afe03e0c1f53f13505883d9fe23fd55 The OpenSSF Package Analysis project identified 'heft-example-lifecycle-plugin' @ 99.0.9 npm as malicious. It is considered malicious because: -...
MAL-2025-41284 Malicious code in eslint-8 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis fc62673366ae7ad1109086b5169030e17b4ed81be6735878522392329ebca48c The OpenSSF Package Analysis project identified 'eslint-8' @ 99.0.9 npm as malicious. It is considered malicious because: - The package...
Malicious code in eslint-8 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis fc62673366ae7ad1109086b5169030e17b4ed81be6735878522392329ebca48c The OpenSSF Package Analysis project identified 'eslint-8' @ 99.0.9 npm as malicious. It is considered malicious because: - The package...
Malicious code in eslint-8.23 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis d4e01b0c5206bd63f9c05e96300c4f8f6e2f5640c76f4742303f802da707471c The OpenSSF Package Analysis project identified 'eslint-8.23' @ 99.0.9 npm as malicious. It is considered malicious because: - The package...
MAL-2025-41285 Malicious code in eslint-8.23 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis d4e01b0c5206bd63f9c05e96300c4f8f6e2f5640c76f4742303f802da707471c The OpenSSF Package Analysis project identified 'eslint-8.23' @ 99.0.9 npm as malicious. It is considered malicious because: - The package...
MAL-2025-41288 Malicious code in examples-lib (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 518ba4bb1adf28c3721d2c8ff48d014ef14b3672e262a2f6eaa8acbe3a8f0823 The OpenSSF Package Analysis project identified 'examples-lib' @ 99.0.9 npm as malicious. It is considered malicious because: - The package...
Malicious code in mayfly-risk (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis bf5840ba1f15b80e436a6737d86e95ddd24c73704e5895a2d43056f85394bd45 The OpenSSF Package Analysis project identified 'mayfly-risk' @ 10.13.0 npm as malicious. It is considered malicious because: - The package...
MAL-2025-41306 Malicious code in mayfly-risk (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis bf5840ba1f15b80e436a6737d86e95ddd24c73704e5895a2d43056f85394bd45 The OpenSSF Package Analysis project identified 'mayfly-risk' @ 10.13.0 npm as malicious. It is considered malicious because: - The package...
MAL-2025-41283 Malicious code in doc-plugin-rush-stack (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis a12c396a6086d8e62fcd6527bd6c4056f50c8def8a668f50a021b0c73a3291be The OpenSSF Package Analysis project identified 'doc-plugin-rush-stack' @ 99.0.9 npm as malicious. It is considered malicious because: - The...
Malicious code in axe-core-scanner (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 2e542b3a8db6b222894a578af53bb9c3d386c930cc296809a2b2ddaac3b31c18 The OpenSSF Package Analysis project identified 'axe-core-scanner' @ 99.0.9 npm as malicious. It is considered malicious because: - The package...
MAL-2025-41281 Malicious code in axe-core-scanner (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 2e542b3a8db6b222894a578af53bb9c3d386c930cc296809a2b2ddaac3b31c18 The OpenSSF Package Analysis project identified 'axe-core-scanner' @ 99.0.9 npm as malicious. It is considered malicious because: - The package...
MAL-2025-41282 Malicious code in azure-ai-foundry (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis a6397746f8f17f740ba33999b71f8e214096f472aaa54614d8603deeb72435c8 The OpenSSF Package Analysis project identified 'azure-ai-foundry' @ 99.0.9 npm as malicious. It is considered malicious because: - The package...
MAL-2025-41279 Malicious code in android-mobile-agent (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 16297b3163e4c4992c5f935c4d595a2de48dfbe42ff4bb55fb7c15d1f7e6dd6b The OpenSSF Package Analysis project identified 'android-mobile-agent' @ 99.0.9 npm as malicious. It is considered malicious because: - The...
Malicious code in android-mobile-agent (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 16297b3163e4c4992c5f935c4d595a2de48dfbe42ff4bb55fb7c15d1f7e6dd6b The OpenSSF Package Analysis project identified 'android-mobile-agent' @ 99.0.9 npm as malicious. It is considered malicious because: - The...
Malicious code in agent-dispatcher (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 70fbbe88de41579cb87272460bf1eba133ca58f846a3ba16dc9182202c03dd6a The OpenSSF Package Analysis project identified 'agent-dispatcher' @ 99.0.9 npm as malicious. It is considered malicious because: - The package...
MAL-2025-41278 Malicious code in agent-dispatcher (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 70fbbe88de41579cb87272460bf1eba133ca58f846a3ba16dc9182202c03dd6a The OpenSSF Package Analysis project identified 'agent-dispatcher' @ 99.0.9 npm as malicious. It is considered malicious because: - The package...
Malicious code in cookie.gulp (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis e19257a4725688794de5a9df6b822ce9a41431ddf4893202ce50a400175d4be2 The OpenSSF Package Analysis project identified 'cookie.gulp' @ 99.0.9 npm as malicious. It is considered malicious because: - The package...
MAL-2025-41277 Malicious code in donuts.node (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9bd852600a317ae1df99af9e6cede53d3f54d36b9a400ca672eff6a7146818a1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...