Lucene search
K

6 matches found

OSV
OSV
added 2026/05/04 9:43 p.m.4 views

GHSA-G38R-8GMR-GHRF `mysten-metrics` was removed from crates.io for malicious code

mysten-metrics included a build script that attempted to exfiltrate data from the build machine. The malicious crate had 1 version published on 2026-04-20 and had no evidence of actual usage. This crate had no dependencies on crates.io...

5.8AI score
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/05/04 9:43 p.m.12 views

`mysten-metrics` was removed from crates.io for malicious code

mysten-metrics included a build script that attempted to exfiltrate data from the build machine. The malicious crate had 1 version published on 2026-04-20 and had no evidence of actual usage. This crate had no dependencies on crates.io...

5.8AI score
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/04 12:0 a.m.11 views

PT-2026-37358

mysten-metrics included a build script that attempted to exfiltrate data from the build machine. The malicious crate had 1 version published on 2026-04-20 and had no evidence of actual usage. This crate had no dependencies on crates.io...

5.8AI score
Exploits0References3
OSV
OSV
added 2026/04/22 12:0 p.m.4 views

RUSTSEC-2026-0107 `mysten-metrics` was removed from crates.io for malicious code

mysten-metrics included a build script that attempted to exfiltrate data from the build machine. The malicious crate had 1 version published on 2026-04-20 and had no evidence of actual usage. This crate had no dependencies on crates.io...

5.8AI score
Exploits0References2
RustSec
RustSec
added 2026/04/22 12:0 p.m.12 views

`mysten-metrics` was removed from crates.io for malicious code

mysten-metrics included a build script that attempted to exfiltrate data from the build machine. The malicious crate had 1 version published on 2026-04-20 and had no evidence of actual usage. This crate had no dependencies on crates.io...

5.8AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/04/20 8:20 p.m.9 views

Malicious code in mysten_metrics (crates.io)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 63f995158ab539b4b108f431c0a0384aa56cd5b50fbfac7d83e743b98d742fa0 The OpenSSF Package Analysis project identified 'mysten-metrics' @ 9.0.3 crates.io as malicious. It is considered malicious because: - The packa...

5.8AI score
Exploits0
Rows per page
Query Builder