16 matches found
MAL-2026-5877 Malicious code in check-ulid (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ea848e496c2022409208a3e4a7d9b364c9437699a15554a5a1ee953d4428f230 check-ulid is a typosquat of the legitimate ulid package README is copied verbatim, homepage and bugs link to github.com/ulid/javascript whose...
MAL-2026-2968 Malicious code in @bitunix/test (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b083a0a29a743f00a18c62069ede0cd31fa3656e9fcbafd497ff742c3efcbdd8 The package @bitunix/test was found to contain malicious code. Source: ghsa-malware caf5aa976643b0e7d9daa1d676c83032b7725f54e4d0f7541e163251805fb9df...
MAL-2026-2941 Malicious code in npm-doc-deploy (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a8ae6448e13630c5243e98e1794e9b2f57b0e999d4c31687f0db0f1665496f9 The package npm-doc-deploy was found to contain malicious code. Source: ghsa-malware f7938c30cf6da645723648c4c43979c97d7c006933fb24ccab60154f1cc5d084...
Malicious code in overstock-component-library (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 387cbf7de757b1668d6c0f2c9f81f9beab4f35af6f362c2ee434509070af2e34 The package overstock-component-library was found to contain malicious code. Source: ghsa-malware...
MAL-2025-149903 Malicious code in format-fns (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 526920f308cc3493a6a3bc9f9e6c7869e0d79392a5ad4c3d20853f93c1be3347 The package format-fns was found to contain malicious code. Source: ghsa-malware a2305cdbb291326c8e91c15e88648a66dff9f0cdcee605ff604ec85ef226b91a Any...
Malicious code in nextjs-edge (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e760ae97f3946b05b183b7e2d558f757bb3bf66afe4199dc5e2d3b54aa0b5e3a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in scriptconfig (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3bd3ce93e4d932714fc3eccce5d02ae6e79657a46f27202ecbe3278d0414555e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in nayan-api-server (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3aa649015a7b9b6a0c072dff43fa33c006eb20cdc5039c2ba526d686ec328223 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @zitterorg/quasi-corrupti-voluptates (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware aff35a0d18fbb946d275f86207376a525265a1e45fc857fd0133fb77666c5ad4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @zitterorg/iusto-ipsum (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6840b085512a54ba0ea22e034dafd51527998fcf28c5932478f1746624946b94 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @lbnqduy11805/sturdy-chainsaw (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a472ad3dc99c2febc88648cf3ccbf6f17c2a254e86c2ffa2e8ed945d25665816 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in arpanrizki-panpan (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c6b640fbdbb106e7e039396ba5e56295d4388dcf0b3a2865daaaf226affc4253 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in grayq-mater (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a2680989107acd2f534bc370b4910bea398798deb5753f908fcbca767662acc0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in agdlebasr (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d4331e323ed4b46302b5e5f4229e7d733c7eb3791dd6a118eaf2ec26f70e84f2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in azure-filter-3 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a88eb2c71c48e98590df8002d5139569ee2f16f41701483e9f1d7254a2093ad7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in snyk-resolve-dep (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b4aee3d2a4454c7a1edc1eb75aa97b985eb7a29056b115d2556bf743099ab559 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...