234874 matches found
MAL-2026-153 Malicious code in darknet-dispatches-internal (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 56bca60f1c0743747f152e1bb34d4c1242fc24bc3500bbc44d7dc2c5235e06e1 The package darknet-dispatches-internal was found to contain malicious code. Source: ghsa-malware...
EUVD-2026-1628
Malicious code in sparkling-cli npm...
EUVD-2026-1625
Malicious code in timeout-ts npm...
Malicious code in timeout-ts (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1df00c4c63fa8e52f67bf4d40b5dadae1ddcb640d127546671ce2bf53b5eafa7 The package timeout-ts was found to contain malicious code. Source: ghsa-malware 16cf2a5883796e1a03bb6cc6da0182692fa5962abe42950ba3d95709ca928a71 Any...
MAL-2026-158 Malicious code in timeout-ts (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1df00c4c63fa8e52f67bf4d40b5dadae1ddcb640d127546671ce2bf53b5eafa7 The package timeout-ts was found to contain malicious code. Source: ghsa-malware 16cf2a5883796e1a03bb6cc6da0182692fa5962abe42950ba3d95709ca928a71 Any...
01-numacert (>=1.0.0 <=3.0.0), 12g (>=0.0.15 <=1.0.1) +7558 more potentially affected by CVE-2026-24001 via diff (>=3.0.0 <=3.5.0)
diff NPM version =3.0.0, =1.0.0, =0.0.15, =1.0.4, =5.4.4, =5.4.4, =2.2.1, =1.1.8, =1.0.0, =2.0.0, =0.0.1, =0.1.1, =0.1.0, =1.0.0, =1.8.1 and more Source cves: CVE-2026-24001 Source advisory: SNYK:JS-DIFF-14917201...
EUVD-2026-1654
Malicious code in bnia-work npm...
MAL-2026-151 Malicious code in svelte-monorepo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 822b182580c298051b9c1f8bb1e807bdb6c780fce64845002feebe37eddd0fad The package svelte-monorepo was found to contain malicious code. Source: ghsa-malware 1f5c5e96c4223fbe3046df01f3cda3aa9b821888050b45d82e92688609a7284...
EUVD-2026-1649
Malicious code in hoppscotch-agent npm...
Malicious Package
Overview bnia-work is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...
EUVD-2026-1630
Malicious code in svelte-monorepo npm...
MAL-2026-149 Malicious code in bnia-work (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f78b12fa102dbd32d8d3a27c016f7b790124a3a73bdf1970768799e120183c30 The package bnia-work was found to contain malicious code. Source: ghsa-malware 2583fa3177342feb8975727c7ad5873d1a1e7bea2ce3ce445343aaa9a0b3459b Any...
Malicious code in bnia-work (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f78b12fa102dbd32d8d3a27c016f7b790124a3a73bdf1970768799e120183c30 The package bnia-work was found to contain malicious code. Source: ghsa-malware 2583fa3177342feb8975727c7ad5873d1a1e7bea2ce3ce445343aaa9a0b3459b Any...
Malicious code in hoppscotch-agent (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ccc9fa1661ed3de2ac221307d7e5cac1aea785ac1d0e2241ecd0001a05fea796 The package hoppscotch-agent was found to contain malicious code. Source: ghsa-malware 7c2ae92a02c69aaa3b5287d2172d0fbc6f8f1e3ae51c69f76c7a07e4dcc7a1...
Malicious code in @testfeii/hallo-word (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6df29a7d1af34a39e40a4928590c45f4d6544245d86b34e3a8f1266398bd2b17 The package @testfeii/hallo-word was found to contain malicious code. Source: ghsa-malware...
Malicious Package
Overview rt-footer is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...
Malicious Package
Overview adyen-web-v5 is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
Malicious code in rt-da-classic-card-collection (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 40df14bf87fe4eb4e065fda942f953028db00c5e8148c1c1ccc2f6cf623d3611 The package rt-da-classic-card-collection was found to contain malicious code. Source: ghsa-malware...
MAL-2026-147 Malicious code in spark-ar-jest-mocks (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a67c582fb00bd7fd05adc5f9680fed203dd43086ab6efbcbec369bb386eaeb6f The package spark-ar-jest-mocks was found to contain malicious code. Source: ghsa-malware...
Malicious Package
Overview npe-toolkit-faves is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...