MAL-2026-4789 Malicious code in ggk-happy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector da23474ba170aa6d3b5bea2c2e8ebbc59be022caec4b612528dd644891e31379 ggk-happy is a fork of the slopus/happy CLI that preserves the upstream README, homepage happy.engineering and repository URL github.com/slopus/happy...

CVE-2026-40113 PraisonAI has an Argument Injection into Cloud Run Environment Variables via Unsanitized Comma in gcloud --set-env-vars

PraisonAI is a multi-agent teams system. Prior to 4.5.128, deploy.py constructs a single comma-delimited string for the gcloud run deploy --set-env-vars argument by directly interpolating openaimodel, openaikey, and openaibase without validating that these values do not contain commas. gcloud use...

CVE-2026-40113

PraxionAI’s CVE-2026-40113 affects PraisonAI before version 4.5.128. The flaw arises in deploy.py, which builds a single comma-delimited string for gcloud run deploy --set-env-vars by directly interpolating openai_model, openai_key, and openai_base without validating for commas. Since gcloud uses...

@bigegg/parse-server-schema-config (>=1.0.5 <=1.0.10), @kontaa/subgraph (>=1.0.1 <=1.2.3) +27 more potentially affected by CVE-2026-32248 via parse-server (>=2.0.8 <=7.5.4)

parse-server NPM version =2.0.8, =1.0.5, =1.0.1, =1.2.1, =2.4.46, =2.4.8, =1.0.0, =1.0.0, =1.0.1, =0.1.1, =0.0.2, =1.0.0, =0.1.0, =0.1.7, =0.0.1, =0.0.29 - parse-cli-server2 =0.0.30 and more Source cves: CVE-2026-32248 Source advisory: OSV:GHSA-5FW2-8JCV-XH87...

GHSA-J6M3-GC37-6R6Q vulnerabilities

Vulnerabilities for packages: gops, slsa-verifier, vexctl, ytt, grafana-operator, docker-credential-ecr-login, cue, nri-cassandra, nri-apache, k8sgpt-operator, tailscale, kube-rbac-proxy, aws-efs-csi-driver, mage, dataplaneapi, kine, kyverno-policy-reporter, fuse-overlayfs-snapshotter,...

GHSA-FGQ5-Q76C-GX78 vulnerabilities

Vulnerabilities for packages: gops, slsa-verifier, vexctl, ytt, grafana-operator, docker-credential-ecr-login, cue, nri-cassandra, nri-apache, k8sgpt-operator, tailscale, kube-rbac-proxy, aws-efs-csi-driver, mage, dataplaneapi, kine, kyverno-policy-reporter, fuse-overlayfs-snapshotter,...

Malicious PyPI Package Targets macOS to Steal Google Cloud Credentials

Cybersecurity researchers have discovered a malicious package on the Python Package Index PyPI repository that targets Apple macOS systems with the goal of stealing users' Google Cloud credentials from a narrow pool of victims. The package, named "lr-utils-lib," attracted a total of 59 downloads...

CVE-2023-45289 vulnerabilities

Vulnerabilities for packages: gops, slsa-verifier, vexctl, ytt, grafana-operator, docker-credential-ecr-login, cue, nri-cassandra, nri-apache, k8sgpt-operator, tailscale, kube-rbac-proxy, aws-efs-csi-driver, mage, dataplaneapi, kine, kyverno-policy-reporter, fuse-overlayfs-snapshotter,...

GHSA-QPPJ-FM5R-HXR3 vulnerabilities

Vulnerabilities for packages: slsa-verifier, cue, aws-efs-csi-driver, fuse-overlayfs-snapshotter, stakater-reloader, hugo, kubewatch, kots, kubernetes-csi-livenessprobe, secrets-store-csi-driver, scorecard, kaf, nri-prometheus, nats, kubeflow, atlantis, hey, memcached-exporter, ko, spark-operator...

CVE-2022-41723 vulnerabilities

Vulnerabilities for packages: k3d, terraform-provider-sendgrid, restic, terraform-provider-sendgrid-fips, wireguard-go, go, gke-gcloud-auth-plugin, dynamic-localpv-provisioner, dynamic-localpv-provisioner-fips, kube-state-metrics, grpcurl, falco, hey, kubeflow-fips, kubeflow...

GHSA-VVPX-J8F3-3W6H vulnerabilities

Vulnerabilities for packages: k3d, terraform-provider-sendgrid, restic, terraform-provider-sendgrid-fips, wireguard-go, go, gke-gcloud-auth-plugin, dynamic-localpv-provisioner, dynamic-localpv-provisioner-fips, kube-state-metrics, grpcurl, falco, hey, kubeflow-fips, kubeflow...

google-cloudstorage-commands 命令注入漏洞

google-cloudstorage-commands is a set of commands for node and gcloud interactions from the individual developers at sam. A security vulnerability exists in google-cloudstorage-commands, which stems from the vulnerability of this package to command injection attacks...

Malicious code in nodejs-gcloud-pubsub-module (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 40eb63d0a4ed52650bf16d9a4d3a4cc2a9e305ba71dadfa7f7276be2f36ab743 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Zendesk: Leaked artifactory_key, artifactory_api_key, and gcloud refresh_token via GitHub.

It was reported to Zendesk that valid credentials to an instance of Artifactory and a gcloud project were unintentionally leaked via a public GitHub repository. We immediately rotated the credentials and investigated to ensure they were not utilized by any other party. We want to thank @rubyroobs...

Imperva Cloud Security Now Available Through UK Government’s GCloud 10 Digital Marketplace

Building on the success of Imperva listing our market-leading, single stack Incapsula cloud platform for DDOS protection; CDN; load balancing and WAF on the GCloud 9 framework, Imperva has now added more products to the GCloud 10 portfolio. As the UK pushes for even greater digital adoption on a...

ISUCON5 qualifier OS Command Injection Vulnerability

ISUCON5 qualifier is a suite of qualifier portal applications. ISUCON5 qualifier's eventapp/lib/gcloud.rb fails to make the correct popen call, allowing remote attackers to submit HTTP requests containing special metacharacters to execute arbitrary commands...

CVE-2015-5673

eventapp/lib/gcloud.rb in the ISUCON5 qualifier portal aka eventapp web application before 2015-10-30 makes improper popen calls, which allows remote attackers to execute arbitrary commands via an HTTP request that includes shell metacharacters in an argument to a "gcloud compute" command...

Command injection

eventapp/lib/gcloud.rb in the ISUCON5 qualifier portal aka eventapp web application before 2015-10-30 makes improper popen calls, which allows remote attackers to execute arbitrary commands via an HTTP request that includes shell metacharacters in an argument to a "gcloud compute" command...

CVE-2015-5673

eventapp/lib/gcloud.rb in the ISUCON5 qualifier portal aka eventapp web application before 2015-10-30 makes improper popen calls, which allows remote attackers to execute arbitrary commands via an HTTP request that includes shell metacharacters in an argument to a "gcloud compute" command...