26 matches found
Malicious code in malicus (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 d151385056670ff22bfb80dc356c10ff622a77e115f8d81ee5f066220e05fda1 The only goal of the package is to execute a webhook or a suspicious file during installation. Closely related to 2025-07-0x9xnx - created after previous...
Malicious code in juno-autodiscovery-browser (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 41d44749dbef196f862f8cab350ac18340a99385cbe96ecb2c13a1eed2603d99 The OpenSSF Package Analysis project identified...
CVE-2025-20994
creationtimestamp| type| source ---|---|--- 2025-06-04 05:41:57+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqr3slajdqu2 2025-06-04 06:48:43+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lqr7loefsr2j...
Malicious code in meli-api-client (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 152f98442370419a0e0c3fb36c2e01d398741677238bd205877b136806a6922b The OpenSSF Package Analysis project identified 'meli-api-client' @ 999.9.9 npm as malicious. It is considered malicious because: - The package...
Malicious code in @amops/fetch (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis d9eb323a3c294832e925d2ed472560ab37507fc32711add225d99db97b08bc74 The OpenSSF Package Analysis project identified '@amops/fetch' @ 1.4.1 npm as malicious. It is considered malicious because: - The package...
Malicious code in api-code-capture-chrome-extension (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis f1e44f89c4e3876559f46852c9a652c510df9384be3ffd0180e36f9fd64e8cfe The OpenSSF Package Analysis project identified 'api-code-capture-chrome-extension' @ 20.0.1 npm as malicious. It is considered malicious becaus...