9 matches found
ROOT-APP-NPM-CVE-2026-54290 CVE-2026-54290 in @rootio/hono - Patched by Root
Root has patched CVE-2026-54290 in the @rootio/hono package for Root:npm. Multiple fixed versions available...
Malicious code in @mastra/hono (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 38c7b04ac71f0c234ec7105176bed53c8b893cdd89fd72465733787456601d0c The package was found to contain malicious code or consuming dependency that contains malicious code Source: ghsa-malware...
MAL-2026-5950 Malicious code in @mastra/hono (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 38c7b04ac71f0c234ec7105176bed53c8b893cdd89fd72465733787456601d0c The package was found to contain malicious code or consuming dependency that contains malicious code Source: ghsa-malware...
ROOT-APP-NPM-CVE-2026-29045 CVE-2026-29045 in @rootio/hono - Patched by Root
Root has patched CVE-2026-29045 in the @rootio/hono package for Root:npm. Multiple fixed versions available...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code containing a malicious binding.gyp file that drops and runs a self-propagating cloud secret stealer. The malicious code attempts to exfiltrate AWS, GCP, Azure, Vault, and Kubernetes credentials, as well as npm an...
GHSA-RC95-PCM8-65V9 vulnerabilities
Vulnerabilities for packages: apicurio-registry, keycloak-fips, hono, request-9047-keycloak-fips, apicurio-registry-fips, keycloak...
CVE-2026-39852 vulnerabilities
Vulnerabilities for packages: apicurio-registry, keycloak-fips, hono, request-9047-keycloak-fips, apicurio-registry-fips, keycloak...
GHSA-M2CM-222F-QW44 vulnerabilities
Vulnerabilities for packages: hono, debezium...
CVE-2026-27727 vulnerabilities
Vulnerabilities for packages: hono, debezium...