9 matches found
ROOT-APP-NPM-CVE-2026-54290 CVE-2026-54290 in @rootio/hono - Patched by Root
Root has patched CVE-2026-54290 in the @rootio/hono package for Root:npm. Multiple fixed versions available...
Malicious code in @mastra/hono (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1ed4177a8fb31809df36c88a8dddc4cd35e888cb1cebbc380e44c09acdd055f4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2026-5950 Malicious code in @mastra/hono (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1ed4177a8fb31809df36c88a8dddc4cd35e888cb1cebbc380e44c09acdd055f4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
ROOT-APP-NPM-CVE-2026-29045 CVE-2026-29045 in @rootio/hono - Patched by Root
Root has patched CVE-2026-29045 in the @rootio/hono package for Root:npm. Multiple fixed versions available...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code containing a malicious binding.gyp file that drops and runs a self-propagating cloud secret stealer. The malicious code attempts to exfiltrate AWS, GCP, Azure, Vault, and Kubernetes credentials, as well as npm an...
GHSA-RC95-PCM8-65V9 vulnerabilities
Vulnerabilities for packages: request-9047-keycloak-fips, keycloak-fips, apicurio-registry, hono, keycloak...
CVE-2026-39852 vulnerabilities
Vulnerabilities for packages: request-9047-keycloak-fips, keycloak-fips, apicurio-registry, hono, keycloak...
CVE-2026-27727 vulnerabilities
Vulnerabilities for packages: hono, debezium...
GHSA-M2CM-222F-QW44 vulnerabilities
Vulnerabilities for packages: hono, debezium...