@bubbles-ui/leemons (>=1.0.0 <=1.2.277), @imtf/rjsf-conditionals (=5.0.3) +3 more potentially affected by unknown CVE via json-rules-engine-simplified (>=0.1.17 <=0.2.0)

json-rules-engine-simplified NPM version =0.1.17, =1.0.0, =0.1.0, =0.1.17, =0.1.1, =0.2.3 Source cves: unknown CVE Source advisory: OSV:MAL-2025-47318...

MAL-2025-47318 Malicious code in json-rules-engine-simplified (npm)

The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d3d77ef6c0caa448d46f58d6f7da23e9e7b3ae880920707f9dd730325bfda9f5 Any computer that has this package installed or running should be considered fully compromised. All...

Embedded Malicious Code

Overview json-rules-engine-simplified is a simple rules engine expressed in JSON Affected versions of this package are vulnerable to Embedded Malicious Code. Compromised versions of this package contain a file called bundle.js that exfiltrates secrets from the user's accounts, including credentia...

@bubbles-ui/leemons (>=1.0.0 <=1.2.277), @imtf/rjsf-conditionals (=5.0.3) +3 more potentially affected by unknown CVE via json-rules-engine-simplified (>=0.1.17 <=0.2.0)

json-rules-engine-simplified NPM version =0.1.17, =1.0.0, =0.1.0, =0.1.17, =0.1.1, =0.2.3 Source cves: unknown CVE Source advisory: SNYK:JS-JSONRULESENGINESIMPLIFIED-12704864...

Malicious Package

Overview json-rules-engine-examples is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

Malicious code in json-rules-engine-examples (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3c055e3188c933741c505c8cf3361cb2eea0557c98870f8b1b963fe27ae7a21a Any computer that has this package installed or running should be considered...

MAL-2025-47097 Malicious code in json-rules-engine-examples (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3c055e3188c933741c505c8cf3361cb2eea0557c98870f8b1b963fe27ae7a21a Any computer that has this package installed or running should be considered...

custom-bytecode-analyzer - Java bytecode analyzer customizable via JSON rules

Java bytecode analyzer customizable via JSON rules. It is a command-line tool that receives a path containing one or more Jar files, analyzes them using the provided rules and generates HTML reports with the results. Usage usage: java -jar cba-cli.jar OPTIONS -a DIRECTORYTOANALYZE -a,--analyze Pa...