234641 matches found
Malicious Package
Overview chatbotloader is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
Malicious code in apmfe (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 03d72b347a4ab4d782a7ee9507b42169fa8da139566832f94309450c32a14b60 The package apmfe was found to contain malicious code. Source: ghsa-malware ed1e7a8b8dca6c9f7b5be8645baa51e525ec40266b2cf6e022052cecbd7c8741 Any...
Malicious code in okxglobal (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 69c773213dce504325f6d7d1508b8b2c8f2586998ab8240577610d71643d496d The package okxglobal was found to contain malicious code. Source: ghsa-malware 6fbd6d2866029238fe53fa341215f4c413767014dc0e6bf5688addd872f109df Any...
Malicious Package
Overview bytefrontier-partner is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
MAL-2026-2652 Malicious code in onewin-landing (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 38fa6b80b5e487a83f8ed1eccfcc9d4bbb5d460deb678e1106aea26439c11f24 The package onewin-landing was found to contain malicious code. Source: ghsa-malware af836df2faf0017725ed9fdbcd5457bfca0045b6a8d9cbad8e1ca949f4f06938...
MAL-2026-2661 Malicious code in vip-landing (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d1a30b342d6480583e23a375439f7332f03167d039b9b5471fa038d2374438fc The package vip-landing was found to contain malicious code. Source: ghsa-malware 63f1dbbecde9c755138a598580ab543e38ddcd44460ce05ec9532e8475bfc2a2 An...
Malicious code in bytefrontier-core (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c9d258ef52db5cbfc634713540fa5f4f797e50b65fa49d3271b9cd3cf34b20dc The package bytefrontier-core was found to contain malicious code. Source: ghsa-malware...
Malicious code in use-feature-flags-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b176246976f266320b17cb9aa3a4fdddb6970d6f115637cb5cb2224c2db75c7e The package use-feature-flags-plugin was found to contain malicious code. Source: ghsa-malware...
Malicious code in vip-landing (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d1a30b342d6480583e23a375439f7332f03167d039b9b5471fa038d2374438fc The package vip-landing was found to contain malicious code. Source: ghsa-malware 63f1dbbecde9c755138a598580ab543e38ddcd44460ce05ec9532e8475bfc2a2 An...
Malicious code in bytefrontier (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d678267bdb56055d10c84922de235b32990b683287a2d918f4664856e0b26ac8 The package bytefrontier was found to contain malicious code. Source: ghsa-malware 61a6f4a4eeaf1e191d0ddc26158901f74e1a4387951453d9cc21567ce3412e70 A...
Malicious code in one-sdui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7ae9d1e61120df70064f163b6e30ced15f3ec724fb27cbc92b9ac1b8d1cd4c02 The package one-sdui was found to contain malicious code. Source: ghsa-malware 3e8ccc46dbdf8114e190c849d6db29184468de377c64467c88e3e33398d54018 Any...
Malicious code in one-translations (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8509aaa4a1769ce406c0bf7883ec6930bbd4aedbbeeb82df3ae719ab279ff238 The package one-translations was found to contain malicious code. Source: ghsa-malware 6d3a1486ad2ba464c9c1c678dfbab6c735eccaf31f2a1d3cba6e3f28a3fad5...
Malicious Package
Overview markdownlint-rule-link-pattern is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and thi...
Malicious Package
Overview seaport-core-16 is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
MAL-2026-2634 Malicious code in percy-cake-docker (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6bf9ba1c1f0935698da1dc2d1856efe1994c5b21139eec04f6eca712e85925f2 The package percy-cake-docker was found to contain malicious code. Source: ghsa-malware...
MAL-2026-2929 Malicious code in path-extend (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 429c0dbb9c8395a6c87ffcf5e6ebe03c6cf6568b4bf205afa933b7d6a49aa578 On require, path.js runs an IIFE that calls a loader which fetches a base64-hidden URL https://www.jsonkeeper.com/b/XTTBX from jsonkeeper.com — an...
Malicious code in centralogger (npm)
dom-utils-lite and centralogger, with identical payloads. On npm install, a postinstall hook fetches the attacker’s SSH public key from a Supabase storage bucket, appends it to /.ssh/authorizedkeys, harvests the victim’s IP, username, and hostname, then uploads that metadata to the same Supabase...
Malicious code in getcardslib (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 88c984b34b3bacb405ca57d999a20be2a2c4c1b3ad75fa7e60f8d6e814b30ab5 The package getcardslib was found to contain malicious code. Source: ghsa-malware ce7e3143ce06f31e15162fef48924c625caddc3e6cc75c9640b053c38ad2665c An...
Malicious code in magentaa11y (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 995b52a2411e3213a611e58f659a941136e8021a88e1d638a232018265d5c11a The package magentaa11y was found to contain malicious code. Source: ghsa-malware 1c1c14e542b99ac8e01a06fd61158c90ffe14fbedbf4834d97f38d65d477ebb5 An...
MAL-2026-2632 Malicious code in magentaa11y (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 995b52a2411e3213a611e58f659a941136e8021a88e1d638a232018265d5c11a The package magentaa11y was found to contain malicious code. Source: ghsa-malware 1c1c14e542b99ac8e01a06fd61158c90ffe14fbedbf4834d97f38d65d477ebb5 An...