21 matches found
MAL-2026-5516 Malicious code in tailwind-animator (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e9a1b7c3c3877a14abbea0abc4ee53a2d5d7207f7932141f428235c069285c0d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2026-1391 Malicious code in @dinzid04/baileys (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e75cf71f0ce959b1ec335f4481db2cc423250422c02e9bf33d40e12b6f541760 The package @dinzid04/baileys was found to contain malicious code. Source: ghsa-malware...
Malicious code in react-svg-fill (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 995c6ef17232fb1949de6b62053246036337cb070a7b06a466bb122d789c9ca3 The package react-svg-fill was found to contain malicious code. Source: ghsa-malware b09c58dca53550942f8c2595496e45d321f85551e7ce7a94e7059e50448f4709...
MAL-2025-48340 Malicious code in project-serum (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0c390d6d9b15f1fb2c2ad9b8e802cff831ed02b6028b111d2937705df46f3fdc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-47944 Malicious code in solarpeng_node_eval2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0319cee3fc5a00c3fe093de4551ea4ba8efca92792da4582e8571e9a4cfcecf3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ado-codespaces-auth (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware acd2e4a00a6fa99e47e9f10ae7238f2faaf2dd65d07678a4f33037a25ef636c2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in service-config-provider (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 40822518b54e1e34955d491e8ede52f50b7da5e2146715795dade573b232ec10 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in coinw-dev (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9f2a295fd0929cc6a57de7c7f506b1bea6f9c586967b38e3429554a2d8094590 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in upm-npm (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 341ba142a6dcaf4029799486f0a64c804e100355a19884e84ed35e73dec44f6a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in streamserch (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 60f81de1812a170068a806d38067c032572690f06b8d48a8a439f994296f9d07 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in dnuhstng (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware be6d446bc6d669d6da31df321e94b5f2cd490daa74b82170765af93d4f734dc9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in kontolq (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware eb20ed455cfe8cf16c5643efa4bb8b5d2c696159dd00577cd8c648e194294a8e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @juiggitea/quisquam-praesentium-facilis (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 60a94c329c83472e6e42cf298e2f60109a21cf455031db5e0c7023bde8572914 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ent-profile-logger (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0e8e7f1079256e8123564b1d1f8ba43345059d0dd9a3e102c3353a5fd30b873f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in wlwz-2312-3901 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 81581a49eae6a786226b0382a1502d12408b75ef25ae916cce4b8e981e3d02a7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in wlwz-2312-5106 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 840c20cf73dbfa5e26d4fa725d2de4330dabd94802c0d5a69d775bb30d92ad4c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in notebooklanguageserver (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 10d44ae2fa83d07ba50dafc11fe63ba5a774daa5f6968b01a3d5f44df8034f12 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in node-gulp-tanker (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 33ba0914556ace991c561a50648a0153d6d2ff3dd2b53ca1ada0b870f9cd8c4b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in pslx (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware af8c1ff1eb4a1230e5037556f2ccd8852ab4a7c4877b10eba4f503070dabb146 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in luc1f3rhk1-test2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c4ae3a2046f786bbef9a6bc59781e8247b58b7c6b6f9cf766dfb3038353ec0e1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...