4 matches found
MAL-2025-191470 Malicious code in org.mvnpm:posthog-node (Maven)
--- -= Per source details. Do not edit below this line.=- Source: google-open-source-security ea90a5928d7667bed4fa9f6effbbe6c8d3ad6521ca51ca2b01551bc02373a7d2 This package was compromised by the Sha1-Hulud: The Second Coming NPM worm. The malicious payload steals tokens and credentials and...
Malicious code in @voiceflow/dependency-cruiser-config (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f310f0649a09ab3e8f8ca155d2067e1f39ad9ac40a987851fd0dd352ffc268fe The package @voiceflow/dependency-cruiser-config was found to contain malicious code. Source: ghsa-malware...
MAL-2025-191275 Malicious code in @oku-ui/switch (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 740a6698034fbce630b1da1ce44728782b3f71faffd3ee2801c45b6a3f9e6f7e The package @oku-ui/switch was found to contain malicious code. Source: google-open-source-security...
Malicious code in @fishingbooker/react-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 90a19dbfbd7292340e4857d9c40d537185efb1402a471df4b8346b4ae3575d3f The package @fishingbooker/react-loader was found to contain malicious code. Source: ghsa-malware...