173 matches found
MAL-2025-190923 Malicious code in mcp-use (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e38bd6291f6f6d66e34397d1b1495513a53528efac94b63487a1646eb7aa45af The package mcp-use was found to contain malicious code. Source: google-open-source-security...
MAL-2025-190899 Malicious code in @posthog/web-dev-server (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d8d0531931bec7f4add3b4f255b7f6572d28ff3edf2774f7d076fde394eb405 The package @posthog/web-dev-server was found to contain malicious code. Source: google-open-source-security...
MAL-2025-190873 Malicious code in @posthog/automatic-cohorts-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6bf3963e4ab04b6b37d6cbb3f237a7b5577ddd854a7249a30f8b78dcc063af97 The package @posthog/automatic-cohorts-plugin was found to contain malicious code. Source: google-open-source-security...
MAL-2025-190919 Malicious code in @zapier/spectral-api-ruleset (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d3f10a9695952f169fff0da94ca1ea47045d97dd486857aad5dbc7b608e2316b The package @zapier/spectral-api-ruleset was found to contain malicious code. Source: google-open-source-security...
MAL-2025-190856 Malicious code in poper-react-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ee86d01d82c77cc7c83c6d28159deba7fa26192da0ab69659d92f78f4d41cd60 The package poper-react-sdk was found to contain malicious code. Source: ghsa-malware 2c3b77a8909da7a5fe13a2fba433147468dfa75dee206eaa996325423e38244...
MAL-2025-190817 Malicious code in @louisle2/cortex-js (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c444e50876d5f75647d843c02c0b22a893e1129c31baca504e57985a07a2f5bb The package @louisle2/cortex-js was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190818 Malicious code in @markvivanco/app-version-checker (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eb3390637a7e3c1122d5f1f2417189358dec13936938bd997c1bf5949c1bb8dc The package @markvivanco/app-version-checker was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190831 Malicious code in asyncapi-preview (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ace11e1c5f0f9487098786e9c0a3b43a0491cd1a23d74b4a9dcfc67fc04c621a The package asyncapi-preview was found to contain malicious code. Source: ghsa-malware 6c99a62eec6b0d9e3b5e9e99c8cb5f10e3286c94fb0e7e44e25808892679a0...
MAL-2025-190791 Malicious code in @actbase/react-kakaosdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a48797e2088e681febf91726aa184436bf3fa96104d23f438a11b19f75ef0516 The package @actbase/react-kakaosdk was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190811 Malicious code in @ensdomains/server-analytics (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 94dd4c8b8f01e631a4c2d9a19e272458d58a22a5a20c89b97603a94e2b68c4a3 The package @ensdomains/server-analytics was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190812 Malicious code in @ensdomains/subdomain-registrar (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 401414959edb6c3fa49058cca521272f84ed2c1e5aef8d7cacadb50696789ba5 The package @ensdomains/subdomain-registrar was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190849 Malicious code in medusa-plugin-announcement (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c9b07264455976108e9b10007ffccea47d12a9b8642114b28082c0d80130c851 The package medusa-plugin-announcement was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190855 Malicious code in orbit-soap (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 34962586ab6b1dda417a71f777d710ef91eadfbdaf81c32d957e9ed8163e4a3e The package orbit-soap was found to contain malicious code. Source: ghsa-malware 3907aa266d3bd43dbf2a9fdfa8673313f17448ecfcd226e4d4a3e5c572d20662 Any...
MAL-2025-190851 Malicious code in medusa-plugin-zalopay (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c3c2a2c7cda991bd113cf7b4cd391451e22bc26d4df3fa7a96669ad4c7d1c219 The package medusa-plugin-zalopay was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190846 Malicious code in go-template (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector de2b1faf83824d6073ab908373d9704ee8fb7cb05322cfb6cedc079603455f10 The package go-template was found to contain malicious code. Source: ghsa-malware 508770194aad24fbaa79597bcc1a3f618b9397f2ad3f6fd1dc06c5dc0938a6ee An...
MAL-2025-190733 Malicious code in @ensdomains/hardhat-chai-matchers-viem (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1999f51becf9c74a78a05fda5c53906b196ac72e115d0555b88ff2dc855adca5 The package @ensdomains/hardhat-chai-matchers-viem was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190722 Malicious code in @ensdomains/blacklist (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 885b443e4475d3f0306ce0899d0afd3b9190193bac49fa411c41328695e05a46 The package @ensdomains/blacklist was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190719 Malicious code in @asyncapi/nodejs-ws-template (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 06529fc17471f54f2c0fc317bca64f4b01fa049862dd2ce5863b33db8445b7ed The package @asyncapi/nodejs-ws-template was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190760 Malicious code in @trigo/atrix-soap (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 39b1328f74edf78d2b44ee487b5ea36c148e8b07a8f3bb83240f4adaa4b6c0f5 The package @trigo/atrix-soap was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190773 Malicious code in iron-shield-miniapp (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6a7b0e4007bb817da7fd19c6ddd7f073f585337504d8ac60541b07e162398b70 The package iron-shield-miniapp was found to contain malicious code. Source: ghsa-malware...