5 matches found
MAL-2025-142701 Malicious code in frontend-chakra-ui-standard-colors (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8520d1091a873c4269619f99e8e6a1a7b3b45d36e1ade66d7ba940a0be49c292 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in @frontend-clients/design-system (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 7fe458099d7b7c0662a9f2283b87071d2afc98b120e402fc20ce916a5b5962ff The OpenSSF Package Analysis project identified '@frontend-clients/design-system' @ 10.0.0 npm as malicious. It is considered malicious because:...
GHSA-GVJ8-4CJ4-H776 Object state limitation has no effect
Object state limitation is a policy you can use in your roles to limit access to content based on specific object state values. Due to a flawed earlier update, these limitations were ineffective in releases made since February 16th 2022. They would grant access to the given content regardless of...
GHSA-5X4F-7XGQ-R42X Object state limitation has no effect
Object state limitation is a policy you can use in your roles to limit access to content based on specific object state values. Due to a flawed earlier update, these limitations were ineffective in releases made since February 16th 2022. They would grant access to the given content regardless of...
Object state limitation has no effect
Object state limitation is a policy you can use in your roles to limit access to content based on specific object state values. Due to a flawed earlier update, these limitations were ineffective in releases made since February 16th 2022. They would grant access to the given content regardless of...