3 matches found
Malicious code in io-components (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware af254b2a53bba08ba0b4ae7258357e2ef8a08a663eb4fb07a19b331753ef234e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-3924 Malicious code in io-components (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware af254b2a53bba08ba0b4ae7258357e2ef8a08a663eb4fb07a19b331753ef234e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious Package
Overview io-components is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package was...