Malicious Package

Overview @manomano-toolbox/api-gateway is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if...

Malicious Package

Overview @manomano-toolbox/toolkit is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this...

Malicious Package

Overview @manomano-toolbox/commercial-operations is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only...

Malicious Package

Overview @manomano-toolbox/pim-management is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable ...

Malicious code in @manomano-toolbox/async-exports (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5ed6043d62007fd2c0e9cbb7d2c4c3f699d6f97ae27a7f8cc5744c19e9128c6c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-412 Malicious code in @manomano-toolbox/async-exports (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5ed6043d62007fd2c0e9cbb7d2c4c3f699d6f97ae27a7f8cc5744c19e9128c6c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in @manomano-toolbox/commercial-operations (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9f71659970c3cafa581f96a058c5ffb608c3a9c9a465c13cd7abde7b4cbf0e05 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in @manomano-toolbox/api-gateway (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware db95524e5bf90907d13f9109419d2a10727fd9549c599cad79231ab6359745f1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in @manomano-toolbox/pim-management (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bd08f90f97f53d7b76dad3a2a10ed8031f6af87a735ea7bfeb12bc0290aefb4c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-418 Malicious code in @manomano-toolbox/toolkit (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3f8ad568240473692aa6be29746503afc42eb55d6c98f814f2911c01fa046991 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...