Malicious code in solana-program (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 b7f4afe6d0bf016660b9bcd20e900d4d0504af8c3ac7f7dc69f20229ebcddb21 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

MAL-2025-6895 Malicious code in commonweb-setup (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 0c019e3086bf1cec9b859c8fe048187fc7cf6dc866de93fbd0ff2182b3e4fc0a The OpenSSF Package Analysis project identified 'commonweb-setup' @ 10.11.0 npm as malicious. It is considered malicious because: - The package...

MAL-2025-6213 Malicious code in donotinstallthisistest6 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 272225f1adba5810796fd9c194041e72e5fcdcc032fa296a701bcc480b37bfcb Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

MAL-2025-1265 Malicious code in com.unity.2d.common (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 75a37bfaf17aed750692186fe017783457f38ab50f15f7a49ddb94033cb27443 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-529 Malicious code in lyft-db (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis f37cced5f60e41888f8d0a2a4472279034b4fd9a0f6076ea9337095dc37cea9f The OpenSSF Package Analysis project identified 'lyft-db' @ 999.9.9 npm as malicious. It is considered malicious because: - The package...

MAL-2025-27 Malicious code in cursor-always-local (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 614a7726e7b2899695d56d3b75f1f9179a6fcde5654913693b20e521e476840f The OpenSSF Package Analysis project identified 'cursor-always-local' @ 1.0.2 npm as malicious. It is considered malicious because: - The packag...

MAL-2024-10847 Malicious code in eslint-tools (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fe353013f0da7eb67305f05b8a3b0db6e1dd3cd40ef4cc4a7bfc21029b380cf2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-1659 Malicious code in openstad-component-forms (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis ce99b034a6f67b0bd613755012e00352d254a5b438c7d65a687a2e2e2458cd7e The OpenSSF Package Analysis project identified 'openstad-component-forms' @ 1.0.0 npm as malicious. It is considered malicious because: - The...

MAL-2023-8122 Malicious code in jerry1319 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 39c3e74d9394364350aac9f2396311212f3cf3e8704fb23daf2bca46a9e24227 The OpenSSF Package Analysis project identified 'jerry1319' @ 1.0.10 npm as malicious. It is considered malicious because: - The package execute...