234869 matches found
Malicious code in @qualys/react-web (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c63e27e2c86203c152f6f7bfc30136a44d93bfbc84522fcf86ca97976511a59 The package @qualys/react-web was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in ethereums-lint (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bddbe5ea052b93fa04966b01c8302455e06311fd6015aaf9c76c07ba8c8f21c4 The package ethereums-lint was found to contain malicious code. Source: ghsa-malware 7671a5fea1c5f2b0118bd9981213bde2b546a4191a57acd041aed6d8560c0de6...
Malicious code in ethereum-lint (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f139611e5bee8bd888911afc42c4e762ba55dc37cb142d92fe4203209f917600 The package ethereum-lint was found to contain malicious code. Source: ghsa-malware d4db9b610771f0e6a14c8e5de6545323a4041420731492b2265b31ec14fdaa3b...
MAL-2026-942 Malicious code in ethereum-lint (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f139611e5bee8bd888911afc42c4e762ba55dc37cb142d92fe4203209f917600 The package ethereum-lint was found to contain malicious code. Source: ghsa-malware d4db9b610771f0e6a14c8e5de6545323a4041420731492b2265b31ec14fdaa3b...
MAL-2026-908 Malicious code in hops-preset-jest (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8165500e6c415192d0b46d0e106f29fb3ae49fce7538b2da40a9e398998c087d The package hops-preset-jest was found to contain malicious code. Source: ghsa-malware d1e4e88ca9b17e3778d9b7f4aa3d9cb2a94cc7ac234505750c84264eb43440...
Malicious code in json-mapping-src (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc958aaacb5ea616283510ccda98b0a4634c35d348eece1613366ac66ad41abb The package json-mapping-src was found to contain malicious code. Source: ghsa-malware 8e7f8a61a6a361880bea88321b1f130627266e5f1d54e8aa9d9f47d64c99db...
MAL-2026-895 Malicious code in json-mapping-src (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc958aaacb5ea616283510ccda98b0a4634c35d348eece1613366ac66ad41abb The package json-mapping-src was found to contain malicious code. Source: ghsa-malware 8e7f8a61a6a361880bea88321b1f130627266e5f1d54e8aa9d9f47d64c99db...
Malicious Package
Overview responsible-ai is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
Malicious code in responsible-ai (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 05c11d73745aba3675053c5e949e3d5cf48ec050f6c5df589f613c094a8a038e The package responsible-ai was found to contain malicious code. Source: ghsa-malware 9b9159173d856834d97152b44c3f78779ff8f3dd4368b5d113920865417044c3...
MAL-2026-879 Malicious code in codexworld (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector adbcf3a15ca44fb393a6c8e40217d59fb72f228be073dda7d50c70236131d586 The package codexworld was found to contain malicious code. Source: ghsa-malware f062939a6f9a6652f3a2e08c3192935b45ce6fd84970a96e43007d424e25b573 Any...
MAL-2026-890 Malicious code in responsible-ai (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 05c11d73745aba3675053c5e949e3d5cf48ec050f6c5df589f613c094a8a038e The package responsible-ai was found to contain malicious code. Source: ghsa-malware 9b9159173d856834d97152b44c3f78779ff8f3dd4368b5d113920865417044c3...
MAL-2026-887 Malicious code in pyrefly (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f731c9ac1e4183a530b005b34a0e1331b1dc61ef8fc60aea56170766e444a48e The package pyrefly was found to contain malicious code. Source: ghsa-malware 588445ae77d1fbd6e2123a29bd2331067492d3a518d7dbbc3a1d57a400622e83 Any...
Malicious code in hxz-protection (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 13dc9932ef1f00aa6dc52dbc5bbb2a7b4096ff94d4dc575903837159d377ba18 The package hxz-protection was found to contain malicious code. Source: ghsa-malware bbf0a8985b32c32401ddf04b75ef930250aab926a54a6ae5dfce381386eb0876...
MAL-2026-891 Malicious code in wropz-6module (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b88cb695572ff176899ffcf9aed27987ea204493850e0bf4b17537d50b93dd59 The package wropz-6module was found to contain malicious code. Source: ghsa-malware 38cd1d5c8154310330369a075368b8556bcffed70470476c894f5d4feb1a2bae...
Malicious Package
Overview xsstesting is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...
Malicious code in despicable-me (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 80a6021ab3cbadc4a7b2c84dee85c1da3a01ecbab1b0a3b1e8aa1f6835a818ca The package despicable-me was found to contain malicious code. Source: ghsa-malware 8919618889f25d842da82fbc9462b9c95cfdcc8aaf393841f00b952d6f2e71f1...
Malicious code in metadata-stripper (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d8c267045a16bae6cd73d8221edda625cfc4c3492849b92a48065fd3cbb2723a The package metadata-stripper was found to contain malicious code. Source: ghsa-malware...
MAL-2026-885 Malicious code in metadata-stripper (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d8c267045a16bae6cd73d8221edda625cfc4c3492849b92a48065fd3cbb2723a The package metadata-stripper was found to contain malicious code. Source: ghsa-malware...
MAL-2026-893 Malicious code in xsstesting (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0f21a18d9a86ac4934f1f0b7970e4530834a2fedfa1c2c3abbd3e2d3e3c664f9 The package xsstesting was found to contain malicious code. Source: ghsa-malware f0cd84b068f1b6a6bf2ac129128c0e052ca218788bc569eedce535a479333fc4 Any...
@anngdinh/remote-mcp-server-authless (=0.0.0), @aredes.me/mcp-camara (=1.0.6) +140 more potentially affected by CVE-2026-1721 via agents (>=0.0.100 <=0.2.35)
agents NPM version =0.0.100, =0.4.0, =1.1.1, =0.1.0, =0.2.0, =0.1.0, =0.0.1, =1.0.2, =1.0.1, =1.0.27 - @famma/mcp-auth =0.0.4 and more Source cves: CVE-2026-1721 Source advisory: OSV:GHSA-CVHV-6XM6-C3V4...