78 matches found
MAL-2025-190831 Malicious code in asyncapi-preview (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ace11e1c5f0f9487098786e9c0a3b43a0491cd1a23d74b4a9dcfc67fc04c621a The package asyncapi-preview was found to contain malicious code. Source: ghsa-malware 6c99a62eec6b0d9e3b5e9e99c8cb5f10e3286c94fb0e7e44e25808892679a0...
MAL-2025-190809 Malicious code in @ensdomains/react-ens-address (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7c136b64e27be18d7c3aeebbcd6a31479adacc70efae5bbf586009180e51098a The package @ensdomains/react-ens-address was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190849 Malicious code in medusa-plugin-announcement (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c9b07264455976108e9b10007ffccea47d12a9b8642114b28082c0d80130c851 The package medusa-plugin-announcement was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190826 Malicious code in @strapbuild/react-native-perspective-image-cropper-2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d5e2f74d9d1d21777c83aa98d57c78a19a6161665a8af16c87f380f0d5b8139e The package @strapbuild/react-native-perspective-image-cropper-2 was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190804 Malicious code in @ensdomains/dnssec-oracle-anchors (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b164c0fb4c77df7a6c083be92efc82f833aaa660d50fbb1a0eea26b2388c65a6 The package @ensdomains/dnssec-oracle-anchors was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190805 Malicious code in @ensdomains/ens-archived-contracts (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c494307ab46ed2af70af69daaf50ee6ce9bee9d65e2f9610c692e97db58c7526 The package @ensdomains/ens-archived-contracts was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190759 Malicious code in @trigo/atrix-elasticsearch (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0126e7ed19553bfe7d77922b8f8f506539820240400ca6a89a6d0fa4c657b7bb The package @trigo/atrix-elasticsearch was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190760 Malicious code in @trigo/atrix-soap (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 39b1328f74edf78d2b44ee487b5ea36c148e8b07a8f3bb83240f4adaa4b6c0f5 The package @trigo/atrix-soap was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190740 Malicious code in @ensdomains/unicode-confusables (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f25465205590fbceb2bb8ae1db02fd1e80f8d085af135427cd757a3b08a1da6 The package @ensdomains/unicode-confusables was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190764 Malicious code in atrix (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c8da24292f4db1ed3effb33c2c59b8af736f288754619eb8904e12b77cab37dc The package atrix was found to contain malicious code. Source: ghsa-malware 892133ca29450416a2608e73a523b5113e423356a6f8c0098602e7c5173b5121 Any...
MAL-2025-190675 Malicious code in @posthog/rrweb-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector de65400909e7dab680997106feffcc22e5a954f60fe775e82db28e5529bacb0c The package @posthog/rrweb-utils was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190655 Malicious code in @asyncapi/diff (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector afa55a72fa4b01b54926fbef60ac9ac0ece6a9128ddbdd3d883aa6ee7bb8c67c The package @asyncapi/diff was found to contain malicious code. Source: ghsa-malware dfe913f8a298c7c2e8e2e4708025a868cba9d567779195881f90ba52bdc8d14c...
MAL-2025-190694 Malicious code in crypto-addr-codec (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 900adb7a0d7713cca5ccdc793971f3489553656e4e132b80293ad56c55d05b2a The package crypto-addr-codec was found to contain malicious code. Source: ghsa-malware...
MAL-2025-47293 Malicious code in ace-colorpicker-rpk (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 426138ee95f77b41d1c00a47edab8b076d8fef24aeddcacb76c601e67fea7312 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @yoobic/design-system (npm)
The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c3dc662cb25b7ebe3c1d58e79387906ea93fed4e7034c6e415b1befd1971874a Any computer that has this package installed or running should be considered fully compromised. All...
Malicious code in @tnf-dev/js (npm)
The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 292d245c3ca4d0fdd82283650bae7b8c7da1f843e984906c10402454c065daec Any computer that has this package installed or running should be considered fully compromised. All...
Malicious code in @operato/shell (npm)
The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 21ac476a02ea2559959f2fb9a0811fd56ee2380dfc7bd199f7731e350b5899ad Any computer that has this package installed or running should be considered fully compromised. All...
Malicious code in db-evo (npm)
The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware dcfee85aff3b81b44dcc0c4c4fe99e193de46de665f2a0fe31221fcc6415c305 Any computer that has this package installed or running should be considered fully compromised. All...
MAL-2025-47239 Malicious code in @hestjs/core (npm)
The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3e502abdd20810df6a40941cec4ea92f9b86b0e774bd5df7461f73771e481b89 Any computer that has this package installed or running should be considered fully compromised. All...
MAL-2025-47330 Malicious code in mstate-dev-react (npm)
The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 014addfef55f28c8297c28c565e3a13e01c74ef273175eb8c2389b4e41921e0a Any computer that has this package installed or running should be considered fully compromised. All...