85 matches found
MAL-2026-2224 Malicious code in jito-validator-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5744d7d3aef03ec852963ebeca1a6357db3aa7bc925bae6e85f173692fc12eb0 The package jito-validator-sdk was found to contain malicious code. Source: ghsa-malware...
Malicious code in syntax-async-generators (npm)
The package 'syntax-async-generators' is part of the PhantomRaven supply chain attack campaign Wave 3. It uses a Remote Dynamic Dependency RDD technique: the published package appears benign but includes a URL-based dependency in package.json pointing to an attacker-controlled C2 server...
Malicious code in typescript-nhost (npm)
The package 'typescript-nhost' is part of the PhantomRaven supply chain attack campaign Wave 2. It uses a Remote Dynamic Dependency RDD technique: the published package appears benign but includes a URL-based dependency in package.json pointing to an attacker-controlled C2 server...
MAL-2026-1368 Malicious code in json-specparse (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 28ad383c55884ea3f12626f13a56f36b7fbc1eab649de47cfcb657478162850c The package json-specparse was found to contain malicious code. Source: ghsa-malware 18627c1c0def6faaa8722de5bc97f27981110eaf8844500039b842de043d2f62...
MAL-2026-957 Malicious code in detect-cache (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4f7bb76ced9a07af5292a6e90596305f844da2d89fc98329431d360797c4b1d4 The package detect-cache was found to contain malicious code. Source: ghsa-malware 136a28b5b046aa8efe7f9f0084f8f700650cdca446449494ec58b8414886f0a0 A...
MAL-2026-806 Malicious code in web3-chain-sinon (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d656a8031870a05e2b7fa8dec1f3f9b9b48c3d8de3d93df42c787c139b0693a5 The package web3-chain-sinon was found to contain malicious code. Source: ghsa-malware f522ddb6d36708e509e4e4074bed2658a3a1e4101d4a45bb588e08c611cc33...
Malicious code in jsonify-settings (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4542f68b7757f5b53642bfaa0e9904aa7fd388338cb001d9e7911b90641a909f The package jsonify-settings was found to contain malicious code. Source: ghsa-malware 286d141ff650d5b4b60b7ad344ea4c0f5b4c3326cf6e7ce1c5e1de74c53094...
Malicious code in blinqio-executions-cli (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d9e5a96fa18543da294b321a481fba9ad03884c6ca9387794f923c84892966be The package blinqio-executions-cli was found to contain malicious code. Source: ghsa-malware...
Malicious code in just-a-calculator (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e1b3b6dacc63b42851c61ae55e5168dbd9ff40172851cbfa980f489da54826f7 The package just-a-calculator was found to contain malicious code. Source: ghsa-malware...
Malicious code in shopify-logistics (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c496eebb9741a5d54e47561695a16482339e4d8b2094e4269c722c2cd17b04b The package shopify-logistics was found to contain malicious code. Source: ghsa-malware...
Malicious code in redirect-n2wvec (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 174132d36061b8f905899e74c3b4b6580fcf4383c5bd1c35a3c3d539fbe1b634 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-47304 Malicious code in cucumber-js-browserstack (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c2f1891754984c705408dd02f9fb37660e1d4d84780ad4be25a83910d1eb789d Any computer that has this package installed or running should be considered...
Malicious code in hrpqwq123 (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2cebbda0574f9d3ae88ca29a1cb1e361c27a4fed067d19a24250e692a54bb8d8 Any computer that has this package installed or running should be considered...
Malicious code in hrpdesign (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e370e366167f90ff8c5a3a171abe2bb14e301cdd2d5499e98f66bd1e653fcf88 Any computer that has this package installed or running should be considered...
Malicious code in yarn-test-git-repo (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware edc9cafea25a24afd9f19a9a4ba2af18e06bd436e07baa0c8cb4250ab522228c Any computer that has this package installed or running should be considered...
Malicious code in what_type_of_self_indulgent_sub-par_challenge_is_this (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a3aab675be401e5fe6766b12bc5278c932ac0e97db81223ce0a5b14870dbb558 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in plugin-meta-extractor (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8afae718387e4b2dfc69c8abec1fa53bf680355cc9e412cbeedfa77c47ac2f6b Any computer that has this package installed or running should be considered...
Malicious code in lunasec-sdks (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 30db7cb288f3beca8f5d1a2fea732e95b2d3c3e391211e7efd835f0cd960e2f9 Any computer that has this package installed or running should be considered...
Malicious code in soracom-xmas-pi (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 409a66069270c0626a428339c624520ef13c0cd1b1a96b7068da663ba96c065d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in express-authgen (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b288b33e1c8cf62fa86cc3a42c139bde6cc4674aec2cc0327ca503b64daf2a4f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...