17 matches found
MAL-2026-4558 Malicious code in fastgrc-openclaw (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 158457237168ef50e3a6c4cd33f51e23f6aec642593745a3d11b9b4870ef36ce The package is an AI agent policy-check plugin. When a consumer does not configure their own API key, resolveApiKey returns a hardcoded BUNDLEDAPIKEY...
EUVD-2025-198945
Malicious code in @posthog/github-release-tracking-plugin npm...
MAL-2025-189425 Malicious code in seismology-jabbah-exosphere-mini-css-extract-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c45e15fb1d80e15c00756ba9c83738595f758665d0520bb6e276352be59c01b6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188981 Malicious code in puppeteer-meissa-prettier-plugin-markdown-sadr (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 809f4be8d5b239fdc543ee29b264220777a93e8df66e578783abd5e171746ef7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140500 Malicious code in castor-yonder-prettier-plugin-markdown-kronos (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1834d70d079be8ad79fd0bf3df1d3b2bfe610236fefdcba9c92d247ca41bc301 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-122894
Malicious code in rate-limiter-acamar-cache-prettier-plugin-markdown npm...
MAL-2025-148448 Malicious code in tailwindcss-morgan-xenon-prettier-plugin-markdown (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 37e5976d20434dd4079fad08fcce891aad9b973e798c17384442b98ed929a1c1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-6291 Malicious code in latam-xp-analytics-plugin-absmartly (npm)
The package communicates with a domain associated with malicious activity...
Malicious code in plugin-warn-if-update-available (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in plugin-transform-unicode-sets-regex (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in plugin-transform-private-property-in-object (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in plugin-syntax-unicode-sets-regex (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-9754 Malicious code in plugin-bugfix-v8-static-class-fields-redefine-readonly (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2023-8614 Malicious code in tessa-npm-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e612f6e8fb0bbb74366928dddf1b34e91f54e4bef8567591fae02dc94d22461e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in tessa-npm-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e612f6e8fb0bbb74366928dddf1b34e91f54e4bef8567591fae02dc94d22461e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
GHSA-WXF3-4FVJ-VQQX Unsafe plugins can be installed via pack import by tenant admins
Summary Unsafe plugins for instance sql-list can be installed in subdomain tenants via pack import even if unsafe plugin installation for tenants is disables Details I have an example https://bot20230704.saltcorn.com/view/allplugins It's publicly accessible but has not so secure values except lis...
Malicious code in 7np-webpack-pugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ed6c84fc217c716d71d72a838b14f06d630976b8cc57e6b590083a02ab335b77 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...