15 matches found
Malicious code in @doaction/rrweb-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6efd52baa69926a32dbac2a3c5eb53c361935e9a3386d2893bf2d7506ab4dfea @doaction/[email protected] is a dependency-confusion / namespace-impersonation package targeting the rrweb session-recording SDK ecosystem. The...
Malicious code in percy-cake-docker (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6bf9ba1c1f0935698da1dc2d1856efe1994c5b21139eec04f6eca712e85925f2 The package percy-cake-docker was found to contain malicious code. Source: ghsa-malware...
Malicious code in @b2b-portal/core (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a28e67919e3dfef2a8a434caec109791355b6f43d434d22bd9515f348a692c5e The package @b2b-portal/core was found to contain malicious code. Source: ghsa-malware 7a10dd57d5e27c26f36c8207faa6449838827281be33c9ecc99e025cfdea19...
MAL-2026-1521 Malicious code in lit-a11y (npm)
The package 'lit-a11y' is part of the PhantomRaven supply chain attack campaign Wave 2. It uses a Remote Dynamic Dependency RDD technique: the published package appears benign but includes a URL-based dependency in package.json pointing to an attacker-controlled C2 server npm.jpartifacts.com...
Malicious code in zod-js (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a8d6e0134575d22df9c8acb633e41aeb44e167203581cee75c81264667e9bdee The package zod-js was found to contain malicious code. Source: ghsa-malware df349fd5990c0cb74fcaa574f32fd30796c00bbe619ee60bd0eac1a658c7dd49 Any...
Malicious code in abeya-tg-api (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 37d3c8662c688eccce2f52334ff40029218abfe48b990a194be49c6e01f5fb57 The package abeya-tg-api was found to contain malicious code. Source: ghsa-malware 01b4d597b84a4aa049cd970002730cf004fb59ff7fb53a7c70196644a0c047e4 A...
Malicious code in react-modal-select (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f83da8504c0563910980ac20ded60f00f0dcec4e105148e06d6115d0596162b6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in redirect-1wc4gw (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 41fe6c9bafdaeb273178f0f0cc9ec19f30ea4e747a6f34b46d6f5e1b4ab5ab25 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in windows-confirm (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7d941ea99acd2b75940d396cc9ab95033f82521f2085f79948f2ab44796a1a8c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in opstimlst (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1931c57874f4a33e47102b939b2235f5c94f75dbc2032473660d4d102f21e45b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in deepemrge (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e3ba08ae80384d13a8c55ee0d227ecdbb3ffbac10549c4a1375f832ccc556a29 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in otenvexpnd (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 87ad3a62c68bd8e57b7e14c1e77b2de12036851733ae8ea9de810548dcccc3d1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in virtual-authenticators-tab (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 186495bb5ef8d7bb5def19e6a4d7edde63dcf94a35d3e4235aa79624ece44103 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @amp-metrics/mt-metricskit-deligates-html (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e7479e8b6c73d1c4e5de6a2fd38b5175bcdb84216696a4b1640e33810b274083 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in metamask (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c38e2affd092587764a4e9baea51817d4947d956b75e48c710a03cdc29283db5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...