CVE-2023-45311

fsevents before 1.2.11 depends on the https://fsevents-binaries.s3-us-west-2.amazonaws.com URL, which might allow an adversary to execute arbitrary code if any JavaScript project that depends on fsevents distributes code that was obtained from that URL at a time when it was controlled by an...

EUVD-2018-0238

Malware in sbrugna...

MAL-2025-42148 Malicious code in my-javascript-project (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 52eefb119e001e8686a1bde4aad7885b353649df1b9e39a1e27537c7ca14a980 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in my-javascript-project (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 52eefb119e001e8686a1bde4aad7885b353649df1b9e39a1e27537c7ca14a980 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Code injection

fsevents before 1.2.11 depends on the https://fsevents-binaries.s3-us-west-2.amazonaws.com URL, which might allow an adversary to execute arbitrary code if any JavaScript project that depends on fsevents distributes code that was obtained from that URL at a time when it was controlled by an...

CVE-2017-16225

aegir is a module to help automate JavaScript project management. Version 12.0.0 through and including 12.0.7 bundled and published to npm the user that performed a aegir-release GitHub token...