311914 matches found
Embedded Malicious Code
Overview @emilgroup/numbergenerator-sdk-node is an A new version of the package Affected versions of this package are vulnerable to Embedded Malicious Code. The publishing pipeline of this package was compromised as the result of Trivy's GitHub Actions compromise and a malicious versions were...
Malicious code in libavcodec-extra (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 00a68b4208fb4614b815e8a867c2155a8667b424e6457e3b72da362edbad9615 During installation or import, the package exfiltrates basic information in a dependency confusion attempt. The user identifies themselves as a HackerOne user...
Malicious code in react-native-country-select (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 769c13bead812dac05aaece43d165b10a7574c48a0a030b703e022325f736380 The package react-native-country-select was found to contain malicious code. Source: ghsa-malware...
Malicious code in react-native-international-phone-number (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f86d66bcbb0f2abf075d3d4ce6a18c3a8ec1563e35087a9fe409f56f9fb64a9f The package react-native-international-phone-number was found to contain malicious code. Source: ghsa-malware...
MAL-2026-1932 Malicious code in react-native-international-phone-number (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f86d66bcbb0f2abf075d3d4ce6a18c3a8ec1563e35087a9fe409f56f9fb64a9f The package react-native-international-phone-number was found to contain malicious code. Source: ghsa-malware...
Malicious code in @iflow-mcp/watercrawl-watercrawl-mcp (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 824ca65d425a95c473a1bd8d193811e3ab4a816ba82e3e2950e5dde508ae2bd0 The package @iflow-mcp/watercrawl-watercrawl-mcp was found to contain malicious code. Source: ghsa-malware...
MAL-2026-1930 Malicious code in @iflow-mcp/watercrawl-watercrawl-mcp (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 824ca65d425a95c473a1bd8d193811e3ab4a816ba82e3e2950e5dde508ae2bd0 The package @iflow-mcp/watercrawl-watercrawl-mcp was found to contain malicious code. Source: ghsa-malware...
Malicious code in @aifabrix/miso-client (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7ddcc2128fa9a68b4ccf29899647a346301d90cb84cb45c30863872c44e2b3ae The package @aifabrix/miso-client was found to contain malicious code. Source: ghsa-malware...
MAL-2026-1929 Malicious code in @aifabrix/miso-client (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7ddcc2128fa9a68b4ccf29899647a346301d90cb84cb45c30863872c44e2b3ae The package @aifabrix/miso-client was found to contain malicious code. Source: ghsa-malware...
Malicious code in changelog-logger-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 34f7f28c6593ecad4f4308faa51ad2d06d6feb541dbc1ab634179bced34a3d95 The package changelog-logger-utils was found to contain malicious code. Source: ghsa-malware...
MAL-2026-1927 Malicious code in changelog-logger-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 34f7f28c6593ecad4f4308faa51ad2d06d6feb541dbc1ab634179bced34a3d95 The package changelog-logger-utils was found to contain malicious code. Source: ghsa-malware...
MAL-2026-1928 Malicious code in changelog-logger-wrap (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector caec1e4b5fc6ded7cff261c7800c1e9753b865564ac6af1674b9450e4c15f577 The package changelog-logger-wrap was found to contain malicious code. Source: ghsa-malware...
MAL-2026-1926 Malicious code in tokenshower (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e31db2e66d226160d10fe5f31a29d7b95cba1d0751cc575c0cf6130679170c7a The package tokenshower was found to contain malicious code. Source: ghsa-malware f9fdcfed91dfe75ee3b371ba973a183f42ff3085a29be233f33b5e34249d18cf An...
MAL-2026-1925 Malicious code in jsonify-parser (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ef3f7d9cb714309502cac987c904c29a8eda1fda1fcd8f5fffabfa339a64369 The package jsonify-parser was found to contain malicious code. Source: ghsa-malware 4d17ffa1ebe907cee2cc4cf5fd22ab76acd112213237bcac49b62b06a002c1cb...
Malicious code in jsonify-parser (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ef3f7d9cb714309502cac987c904c29a8eda1fda1fcd8f5fffabfa339a64369 The package jsonify-parser was found to contain malicious code. Source: ghsa-malware 4d17ffa1ebe907cee2cc4cf5fd22ab76acd112213237bcac49b62b06a002c1cb...
Malicious code in nflx-release (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3868ddb111f719ba68b77cb727004735968c277712508099e138028047b7fd55 The package nflx-release was found to contain malicious code. Source: ossf-package-analysis...
MAL-2026-1584 Malicious code in wn-idv-persona-client (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 77973c6ca0ba60bf7105d4250b88b0fd7b3304dd3fe9ead1072912d8e724b21f The package wn-idv-persona-client was found to contain malicious code. Source: ossf-package-analysis...
MAL-2026-1583 Malicious code in whatnot-web (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4e7124b844cb92c573d57e94d1060a58445a82d03984c430e1632807fda9d227 The package whatnot-web was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in whatnot-events (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 660bfcc33bb74e7ed20b985e9e50f5ade9988def6cf29a9a31a9107ea619ed64 The package whatnot-events was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in whatnot-manifests (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2f0504ddd24de9ec3870bb8fc657436f5a61e3f6327f0e044bc380bfe3479d40 The package whatnot-manifests was found to contain malicious code. Source: ossf-package-analysis...