Malicious code in opensearch-with-grafana-lambdas (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1610e128601e1cf8f57fb7382fb6310a88b8420bcf1aa66c7e0c8b488b5477dc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

@adobe/git-server (>=0.9.17 <=1.0.0), @adobe/helix-cli (>=0.3.0-SNAPSHOT.293 <=5.7.6) +34 more potentially affected by CVE-2022-22984 via snyk-python-plugin (>=1.0.0 <=1.24.0)

snyk-python-plugin NPM version =1.0.0, =0.9.17, =0.3.0-SNAPSHOT.293, =2.6.0, =1.0.5-SNAPSHOT.105, =0.0.4, =8.0.36, =5.0.22, =3.10.42, =0.0.70, =0.5.8, =3.2.4, =0.0.2, =0.0.11, =1.0.1 - @ericblade/quagga2-redux-middleware =1.0.1 and more Source cves: CVE-2022-22984 Source advisory:...

@adobe/git-server (>=1.0.1 <=1.0.5), @adobe/helix-cli (>=5.7.7 <=6.1.0) +34 more potentially affected by CVE-2022-22984 via @snyk/snyk-cocoapods-plugin (>=1.0.2 <=2.5.2)

@snyk/snyk-cocoapods-plugin NPM version =1.0.2, =1.0.1, =5.7.7, =2.16.1, =0.0.4, =8.0.36, =5.0.22, =3.10.42, =0.5.8, =3.2.4, =0.0.2, =0.0.8, =0.2.0, =1.20.0-alpha.11736.3, =1.24.0-alpha.1 and more Source cves: CVE-2022-22984 Source advisory: OSV:GHSA-4X6G-3CMX-W76R...

@adobe/git-server (>=0.9.18 <=1.0.5), @adobe/helix-cli (>=0.3.0-SNAPSHOT.293 <=6.1.0) +37 more potentially affected by CVE-2022-40764 via snyk-go-plugin (>=1.10.0 <=1.17.0)

snyk-go-plugin NPM version =1.10.0, =0.9.18, =0.3.0-SNAPSHOT.293, =2.6.0, =1.0.5-SNAPSHOT.105, =0.0.4, =8.0.36, =5.0.22, =3.10.42, =0.0.70, =0.5.8, =3.2.4, =0.0.2, =0.0.7, =0.2.0, =0.2.8 and more Source cves: CVE-2022-40764 Source advisory: OSV:GHSA-HPQJ-7CJ6-HFJ8...

Malicious Package

Overview @epc-apps/edge-lambdas is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this...

Malicious code in @epc-apps/edge-lambdas (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fac603a15d0ab913153cc8c0364ba23ad7ed7b353172ee00e0876c3fecdbfee3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-235 Malicious code in @epc-apps/edge-lambdas (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fac603a15d0ab913153cc8c0364ba23ad7ed7b353172ee00e0876c3fecdbfee3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Let’s Get Under the Hood of Imperva Snapshot

A stress-free guide for the prudent cloud operator With minimal setup, Imperva Snapshot enables you to immediately start your in-depth Amazon Web Services AWS RDS database assessment. With no prior training required, cloud operators can use this useful tool to pinpoint deficiencies in their...

PYSEC-2020-125

In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the Shard API in TensorFlow expects the last argument to be a function taking two int64 i.e., long long arguments. However, there are several places in TensorFlow where a lambda taking int or int32 arguments is being used. In...