234761 matches found
Malicious Package
Overview polymarket-onchain is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
Malicious code in @validates-sdk/v3 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 14f6dc99183ad11d3293d19966af14cd33cf7ed4ad00f3de9d6f07e5842a9234 The package @validates-sdk/v3 was found to contain malicious code. Source: ghsa-malware...
MAL-2026-1964 Malicious code in pretty-loggers (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ac086b231c77fe68e31ce08ba212f70807936ae95b86d5af7fce505d9e20118 The package pretty-loggers was found to contain malicious code. Source: ghsa-malware 0218f0b3be8b1ccf4ed897adca433d157feeee1163f03cf8ed2e0b435ad90e8e...
Malicious code in @solana-launchpads/sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6e2c89ed75f226eef50b8af164fed8d3e86773096aa480de467c72f133f02d6a The package @solana-launchpads/sdk was found to contain malicious code. Source: ghsa-malware...
MAL-2026-1938 Malicious code in @metaplex-foundations/umi-public-keys (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 48abfc0f902cd0f09b0c2ae7449eaefbf3b4baf1cb12e4165f509b86f7ad8692 The package @metaplex-foundations/umi-public-keys was found to contain malicious code. Source: ghsa-malware...
MAL-2026-1943 Malicious code in clob-utils-sdks (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f20ec3dfbb49223ad3bda64fdd9d0af3f65ea9e3c972fc04ad497f4ff39f30b9 The package clob-utils-sdks was found to contain malicious code. Source: ghsa-malware fea942e1b67d99fb05dcee5e06429f58255c03be72abcfd2d022c7c458f4dd8...
Malicious Package
Overview clob-utils-sdks is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
Malicious code in clob-utils-sdks (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f20ec3dfbb49223ad3bda64fdd9d0af3f65ea9e3c972fc04ad497f4ff39f30b9 The package clob-utils-sdks was found to contain malicious code. Source: ghsa-malware fea942e1b67d99fb05dcee5e06429f58255c03be72abcfd2d022c7c458f4dd8...
MAL-2026-1970 Malicious code in supportgameapp (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a47bd58f99ca83621adcd03a62db6b246a9bef49500f502bab948c371f7ead79 The package supportgameapp was found to contain malicious code. Source: ghsa-malware 62c4a020a9479973b325083e07d2a5a87d4afdf4260a2b2c78a8e164d0e01918...
Malicious Package
Overview restaking-apy-module is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
Malicious code in restaking-apy-module (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8aa08edde60ee1a5b831af5088eaaf1b9b490ab5975541f8036f4efac42d6840 The package restaking-apy-module was found to contain malicious code. Source: ghsa-malware...
MAL-2026-1952 Malicious code in json-parse-genie (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 57744a9f0e3acf081bd2a75ca3684d01e3907f1eab7636e0873ed0ef1bf509ee The package json-parse-genie was found to contain malicious code. Source: ghsa-malware b2293df6ecd418ffd21c1112affa6571afe9a78ff596ce2dd1fac64a470c98...
Malicious code in interface-builder-kit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 42cc05570914fc62a76ece6ad51a426f9453419302b0e4f303c612bf295000ed The package interface-builder-kit was found to contain malicious code. Source: ghsa-malware...
Malicious code in jsonify-bundler (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0aa4b4269de8cd80d5dcc7106a78d477d668896627219a2f6e2199aef68f196f The package jsonify-bundler was found to contain malicious code. Source: ghsa-malware ce66e88fca5eb80c0c46cbfc975ac7fae97a50a6e0c7365cee57762e9a06b99...
Malicious Package
Overview lint-builder is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
Malicious code in lint-builder (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 511fb0e1a1d0c7d5a01a50714b5d037b1b88a72563ccedc0b9a192bd36f87f3e The package lint-builder was found to contain malicious code. Source: ghsa-malware d8d7ec358909703548602accb473cdf1383fda5b1524af87a299b6f67dc9f063 A...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. The publishing pipeline of this package was compromised as the result of Trivy's GitHub Actions compromise and a malicious versions were released on NPM. They contain malicious code, and its content was NOT yet...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. The publishing pipeline of this package was compromised as the result of Trivy's GitHub Actions compromise and a malicious versions were released on NPM. They contain malicious code, and its content was NOT yet...
Embedded Malicious Code
Overview @emilgroup/partner-sdk is an A new version of the package Affected versions of this package are vulnerable to Embedded Malicious Code. The publishing pipeline of this package was compromised as the result of Trivy's GitHub Actions compromise and a malicious versions were released on NPM...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. The publishing pipeline of this package was compromised as the result of Trivy's GitHub Actions compromise and a malicious versions were released on NPM. They contain malicious code, and its content was NOT yet...