2 matches found
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. The package was flagged as malicious during the Sha1-hulud supply chain attack. Although the Sha1-hulud IoCs are not present within the package, the contents of the affected version were removed from the officia...
MAL-2025-191458 Malicious code in @medusajs/medusa-oas-cli (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 48124e119c7f2c21e744172a5901266335824c5ceac7a1c631805772baa3798a The package @medusajs/medusa-oas-cli was found to contain malicious code. Source: ghsa-malware...