2 matches found
MAL-2026-6197 Malicious code in new-ecro (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7492a140547cea0957bc705d365e19806091462a249c3d5c90b6bfe91e8431c7 Package 'new-ecro' impersonates the legitimate 'big.js' library: it copies big.js's README, source, version banner 'big.js v7.0.1', author email, and...
GO-2025-3451 Vulnerability in github.com/boltdb-go/bolt
This module is a malicious typosquat, attempting to take advantage of confusion with the github.com/boltdb/bolt module...