2 matches found
Malicious Package
Overview @manomano-toolbox/components is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if...
Malicious code in @manomano-toolbox/components (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4141fb4b8de9f49fbbe144aa0dacfbda2d8ec36a8314190745e67a161d0bd481 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...