542 matches found
Malicious code in elf-stats-lanternlit-snowman-834 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4a5ba8a53d8eaf81612c735ecd48fa5c485199e190ba2e4047f1160d5ad1d9dc The package elf-stats-lanternlit-snowman-834 was found to contain malicious code. Source: ghsa-malware...
Malicious code in chai-test-await (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cc4f5ebd52a0912210e31f29b89e1199fadcf3bfddd5557b38e388f9b6df8315 The package chai-test-await was found to contain malicious code. Source: ghsa-malware a25b0475f84c41d68c89ffad60b4dc123876d634fbe93a793fae42da8e1112b...
Malicious code in @pruthvi21/use-debounce (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4cd8d11cd0a3abe19ac13cfc1b3bf6a4f1388ac2c6a404090a1264d32de390e8 The package @pruthvi21/use-debounce was found to contain malicious code. Source: ghsa-malware...
Malicious code in @asyncapi/studio (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3eabd7c33d6759f64f573e5cc75565c4669ed790fe45d77d2756d1380b79063f The package @asyncapi/studio was found to contain malicious code. Source: ghsa-malware be3f6f1fe39d5dd5c1ee3ab702e2bee67bc36c54ded865ad25eb2504919b58...
Malicious code in react-native-worklet-functions (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6ed2ae3214c7915580ec4f119fc2fc1ee0e071e2deea48ef419973982180aa9c The package react-native-worklet-functions was found to contain malicious code. Source: ghsa-malware...
Malicious code in eslint-config-zeallat-base (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b28fe7c28614bd60fe323d92db35df502ed3c1c9076a708815031e1a78311c6e The package eslint-config-zeallat-base was found to contain malicious code. Source: ghsa-malware...
Malicious code in iron-shield-miniapp (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6a7b0e4007bb817da7fd19c6ddd7f073f585337504d8ac60541b07e162398b70 The package iron-shield-miniapp was found to contain malicious code. Source: ghsa-malware...
Malicious code in @posthog/cli (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 57662af8290901771cf534d8b1ca05ca88dfd84054580144d934f730549a4653 The package @posthog/cli was found to contain malicious code. Source: ghsa-malware e663c40b9060088ff86ea24eec083b9b5bf8afdec2e1963895e47e5177a673d1 A...
Malicious code in react-icons-toolkit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 224e1d5b1a2b01321da822c843e2013f28320e4b9d4d74487daef59c812557f6 The package react-icons-toolkit was found to contain malicious code. Source: ghsa-malware...
Malicious code in operations-packages (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e279a09b8ba965f892f0b7fbae2dd4de1eb039500b8e3e1a52a903298214abef The package operations-packages was found to contain malicious code. Source: ghsa-malware...
Malicious code in react-router-dom.js (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a54a5d0a9e2cbf3435d04524f79602d94e2a8b49ce9bf676ef37f23e44f1c28c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-49069 Malicious code in xo-shipping-change (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 194261ca5ce11a3a819c4aa938f33cd04d1089a614c0e1a224229efae8fc0edd Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in spaintest1 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2104fbcce90cd97dbee8fa4f047b5bc21a8b2eb1009654e1d6e6542f95b9ed8d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in shopify-ruby (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 974d73b54aa22ffaf8dfee7094b175bea558642ea43dda60cee5bc58b44ed17f The package shopify-ruby was found to contain malicious code. Source: ghsa-malware a529d693e0fe4a67a348d26b2117b4b314994f3378fa0ed92576c915cd5dccff A...
Malicious code in vite-plugin-es6-compat (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3963df81ab545839d03c3c54ab9ee88549e38a44b32fe6ad05002d554da780b1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in reactify-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 33fa7e90d4152416b1c914f2f869a4b26ea6afb25a672834b497be10bcea138a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in internallib_v125 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ab77b49975a46f2335153950e340dc04f11da41aebe8c463f96f99d7e831fff6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in chai-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 975b6ac20ebe483ebacc5aac930cd8efb123c6f3e9c68d18bf72c0e42c1787ba Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48157 Malicious code in redirect-ewce43 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8d3a83cfe9df44f0743b065c4c13d3e28fb674fdd00d29200036c53697af96ab Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in redirect-t09ul0 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 90ca8a1ed9e79de9fab0cccb2691d3d08e819e858489a95b13385bbc6437e022 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...