MAL-2025-191013 Malicious code in stat-fns (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f5395e07a1f1a743d77d42495c7eaf08cb0ced22a0b0883b53b5adf78beef28a The package stat-fns was found to contain malicious code. Source: ghsa-malware 6c2e197e85b015babcf3a2073e3f76b980a3ae924a49a20d9c1648c610d7d3c0 Any...

MAL-2025-191014 Malicious code in stoor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a7b7532a301c81deec9ab17a09d1b99034890bb7c52da539cebf9959e067d00b The package stoor was found to contain malicious code. Source: ghsa-malware be82c913cadb695dde12c8181a4caebf5a0ab0fedc2040c8a874418051174e67 Any...

MAL-2025-191015 Malicious code in super-commit (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6c1af7533a4794e88dc233547249b656c3a1fd1a87109827755918da11151fbe The package super-commit was found to contain malicious code. Source: ghsa-malware 4ef89565a74f08dc54807acd41e1218c07d6d9ffdb73411163e95c66ba080e61 A...

MAL-2025-191018 Malicious code in tanstack-shadcn-table (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fd82454ff234aa46b67b1813010ca3e7c45defc2172690c8c94fc74e2e09f6dc The package tanstack-shadcn-table was found to contain malicious code. Source: ghsa-malware...

MAL-2025-191019 Malicious code in tcsp-draw-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3aab2e2be47f975ef5d6dcbb26dd22621b6043ca130bcd094aa6524696873a3 The package tcsp-draw-test was found to contain malicious code. Source: ghsa-malware a0c29ab38c3bc97e4948587b9e49496e015ba0ed1f2b292e49fad4a91b6380c2...

MAL-2025-191020 Malicious code in tcsp-test-vd (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d9f8fd99690655a6e155948c83b8baf3c7d03d10aa4adec3a8e87ed21a96921e The package tcsp-test-vd was found to contain malicious code. Source: ghsa-malware bbc33c9b0da4ee5d72787025ea4a8ca6f7c7b140ba2cb7fa40a3cf6703cb61c8 A...

MAL-2025-191021 Malicious code in template-lib (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0e288aff0b522dd0945eacea1515088bda9c8140d4ae4ad53179f6f343143110 The package template-lib was found to contain malicious code. Source: ghsa-malware 184fda3b914503f8e849b5fa51afd8cea4fd8a88f0b81aeb6b128dac1847fbfa A...

MAL-2025-191024 Malicious code in tiaan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7eec9aed3f08840a4f5787d8e5edb18c097459657ba29ca488daae2047709701 The package tiaan was found to contain malicious code. Source: ghsa-malware 0135c9cc2fe2d3112342fbb4e91dee9f30647a8d8bc93c0453991d8c51f4710e Any...

MAL-2025-190936 Malicious code in typefence (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6c9ac344bf18963e146d64aec1de72c3db819eb2c4356be7257ef1980555a17f The package typefence was found to contain malicious code. Source: ghsa-malware 28d8025e6d485b7679079ba265b2ed9a28c10029903c94441308121d974cbf18 Any...

MAL-2025-190937 Malicious code in undefsafe-typed (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71757e5cdef13d215b8506dfd5b00831fc29a7a24e208472c79fd40c2abe7967 The package undefsafe-typed was found to contain malicious code. Source: ghsa-malware 1a19664890dd6d9bba23c333e1095114841ef498dec4eaa02c1bff38bc80aa4...

MAL-2025-190938 Malicious code in uplandui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 22f9a52e37653e2c0d85c55db9f1173d503391434bb0a2667b8ae8e57f1ed92b The package uplandui was found to contain malicious code. Source: ghsa-malware e26bf91e39b976ff5aa4107bd8140380fdceeb1de6c12a9fd9993d1ff16642aa Any...

MAL-2025-190939 Malicious code in upload-to-play-store (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 86f86113dded695e7f899fe12b243d559d7cb4ddf1f6d3d67aa8318c07ed646d The package upload-to-play-store was found to contain malicious code. Source: ghsa-malware...

MAL-2025-190940 Malicious code in url-encode-decode (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 37ce07aaa237eff3cc95c7bb560f4096191d2d5328de45f176f3f8662ca7cd34 The package url-encode-decode was found to contain malicious code. Source: ghsa-malware...

MAL-2025-190941 Malicious code in use-unsaved-changes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 96deeb533a3de753f2de9201e46a0a8ccfa79d22d848ed8cbb20f19b36242ae6 The package use-unsaved-changes was found to contain malicious code. Source: ghsa-malware...

MAL-2025-190942 Malicious code in valid-south-african-id (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a363caeeaaa83a715f0d38b64608e11a39a272a42abe53c92dbbacb133dc927 The package valid-south-african-id was found to contain malicious code. Source: ghsa-malware...

MAL-2025-190943 Malicious code in web-scraper-mcp (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2dfaccc27abfc21f8c77b6fdf8878b91578a74d08526e6995cc52c2922ca3588 The package web-scraper-mcp was found to contain malicious code. Source: ghsa-malware 836f393eb6f0f8e726f2a49d47785c31473723f76d1f6a6e6e2d6d75e53e5dd...

MAL-2025-190944 Malicious code in wellness-expert-ng-gallery (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ba93ea812053d1ede65994da95ddd6a39a75002e9ec11387d69ca38f99980fb3 The package wellness-expert-ng-gallery was found to contain malicious code. Source: ghsa-malware...

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...