MAL-2025-3575 Malicious code in adobe-acrobat-sign (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 17d7f8480bfb87e856460e7dedfcbc5f53a5bce7d4c34225bb231dc41507678d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3510 Malicious code in rose-bn (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b255ebbe2f749770901182d7be69641b1f7e94bacd94fff31794262c33d998af Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-1511 Malicious code in spacelift-webhook-receiver (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 6bb9dc87c1669be92bee0be50a372fb87d1d92064bc4db257131d4323c2783e9 The OpenSSF Package Analysis project identified 'spacelift-webhook-receiver' @ 1.1.0 npm as malicious. It is considered malicious because: - The...

MAL-2025-1391 Malicious code in voiceedgelite (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis fd93b14a943a875efb1d2602d31cc497e92f135adac765f65f2a0ffd72d6ad42 The OpenSSF Package Analysis project identified 'voiceedgelite' @ 1.1.5 npm as malicious. It is considered malicious because: - The package...

MAL-2025-596 Malicious code in home-assignment (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 243807d7ae6247f1bee104dab17a677c3ec10064973a5ac7b3e5f4ff2753d35a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-455 Malicious code in epicagames-utils (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis c33c517ccf715e4f610939332c3137b5abb5a7fbd5c82bac72bf051316389738 The OpenSSF Package Analysis project identified 'epicagames-utils' @ 999.9.9 npm as malicious. It is considered malicious because: - The package...

MAL-2025-442 Malicious code in epicagames-admin (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 80a148b27a48e0abff9456d60d3fcd31fcfb9f4896cc62f5542cc2d38ed8d830 The OpenSSF Package Analysis project identified 'epicagames-admin' @ 999.9.9 npm as malicious. It is considered malicious because: - The package...

MAL-2025-420 Malicious code in coinbase-oauth (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis a5ca839941ed94b22736187227b12ba68ef04a39c55e4155add495e004d8ed43 The OpenSSF Package Analysis project identified 'coinbase-oauth' @ 999.9.9 npm as malicious. It is considered malicious because: - The package...

MAL-2025-372 Malicious code in amazon-cache (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 47afadf6d8e5ca0f2cb5ebb9ee561ce12c13b4faa4ed23a68e437d86a3a911f3 The OpenSSF Package Analysis project identified 'amazon-cache' @ 999.9.9 npm as malicious. It is considered malicious because: - The package...