2407 matches found
Malicious code in adityan-pwdd-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 674ca0f770a4ea3dd88fa7978e7f082c0baa7b7eaa7f761e364d1c8bccfc3664 The OpenSSF Package Analysis project identified 'adityan-pwdd-test' @ 3.0.8 npm as malicious. It is considered malicious because: - The package...
MAL-2023-1110 Malicious code in adityan-pwdd-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 674ca0f770a4ea3dd88fa7978e7f082c0baa7b7eaa7f761e364d1c8bccfc3664 The OpenSSF Package Analysis project identified 'adityan-pwdd-test' @ 3.0.8 npm as malicious. It is considered malicious because: - The package...
Malicious code in dc-icons (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis e8689cb64586338ac8b83b329558cc7ebd7302602c033a5de1827e1ff8ceaf6e The OpenSSF Package Analysis project identified 'dc-icons' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...
MAL-2023-1150 Malicious code in dc-icons (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis e8689cb64586338ac8b83b329558cc7ebd7302602c033a5de1827e1ff8ceaf6e The OpenSSF Package Analysis project identified 'dc-icons' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...
MAL-2023-1411 Malicious code in spammingsynonyms (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b06c2a9bef8741ecd851e448b284d8c0eef63b726a77662a1e4f3aec34119f80 The OpenSSF Package Analysis project identified 'spammingsynonyms' @ 3.0.1 pypi as malicious. It is considered malicious because: - The package...
MAL-2023-1409 Malicious code in smsobfuscate (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis fa2efc28ecdebc90e41edd50503e199984f68d05cb13edab8b6e8d503d18e75c The OpenSSF Package Analysis project identified 'smsobfuscate' @ 1.0.1 pypi as malicious. It is considered malicious because: - The package...
MAL-2023-1309 Malicious code in stripe-deep-dup-tree (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 29790a4dda8ea513434302f82a02b4ef9cb90fa0b9e63de804082d284c8cb989 The OpenSSF Package Analysis project identified 'stripe-deep-dup-tree' @ 1.0.0 npm as malicious. It is considered malicious because: - The packa...
MAL-2023-1308 Malicious code in stripe-deep-deep (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis e7158c510e35fd6474a199140be8247cbefc73f5020d7a443927d22a7b555573 The OpenSSF Package Analysis project identified 'stripe-deep-deep' @ 1.0.1 npm as malicious. It is considered malicious because: - The package...
Malicious code in test-test-test-leys-check (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis a0f1b447a06ae8cd034c08db769374bbc319460cc98a553bfc472d87ca1ef6cc The OpenSSF Package Analysis project identified 'test-test-test-leys-check' @ 9.9.9 pypi as malicious. It is considered malicious because: - The...
MAL-2023-1419 Malicious code in test-test-test-leys-check (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis a0f1b447a06ae8cd034c08db769374bbc319460cc98a553bfc472d87ca1ef6cc The OpenSSF Package Analysis project identified 'test-test-test-leys-check' @ 9.9.9 pypi as malicious. It is considered malicious because: - The...
MAL-2023-1292 Malicious code in seafoam-desktop (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 11b7b515412cb320d382cffb4a3abe4fa232556d7db6ac3dde904bd295b279a3 The OpenSSF Package Analysis project identified 'seafoam-desktop' @ 10.0.0 npm as malicious. It is considered malicious because: - The package...
Malicious code in paycom-events (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis c80a2de08068c1bfcccc84d1061f40232d518c725dc774ab6ed2f73e25753978 The OpenSSF Package Analysis project identified 'paycom-events' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...
MAL-2023-1233 Malicious code in mesbah-unclaim (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 263dd8e3a7c219627fe6ca196c18bb5262996c68f086fd118d74caec6e06aee1 The OpenSSF Package Analysis project identified 'mesbah-unclaim' @ 2.0.0 npm as malicious. It is considered malicious because: - The package...
MAL-2023-1268 Malicious code in pmcrypto-v7-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis aa2e150fa7626c456fcd88a95dd114616578c8bf69b9cf9c772d3858a051b6ba The OpenSSF Package Analysis project identified 'pmcrypto-v7-test' @ 1.999.0 npm as malicious. It is considered malicious because: - The package...
MAL-2023-1311 Malicious code in suncorp-styleguide-react-components (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1b6a39ac171632a984b8ac8c3e53ab935e47753ac7e0df7161daa7bc23f8e08d The OpenSSF Package Analysis project identified 'suncorp-styleguide-react-components' @ 102.0.0 npm as malicious. It is considered malicious...
MAL-2023-9 Malicious code in sagemakertransformers (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 0c11f5b4aed6b109392ec1e8837e14a1948f90d65986a7555511b0dd2cb2f479 The OpenSSF Package Analysis project identified 'sagemakertransformers' @ 0.0.3 pypi as malicious. It is considered malicious because: - The...
Malicious code in sagemakertransformers (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 0c11f5b4aed6b109392ec1e8837e14a1948f90d65986a7555511b0dd2cb2f479 The OpenSSF Package Analysis project identified 'sagemakertransformers' @ 0.0.3 pypi as malicious. It is considered malicious because: - The...
Malicious code in back-alley (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 83d1eb07b6ba84ecc98bdd4ad2a1313b540e69509c08d8d66f4b2fe54a1986a7 The OpenSSF Package Analysis project identified 'back-alley' @ 1.1.0 npm as malicious. It is considered malicious because: - The package...
MAL-2023-1120 Malicious code in back-alley (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 83d1eb07b6ba84ecc98bdd4ad2a1313b540e69509c08d8d66f4b2fe54a1986a7 The OpenSSF Package Analysis project identified 'back-alley' @ 1.1.0 npm as malicious. It is considered malicious because: - The package...
MAL-2023-453 Malicious code in font-forno (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 71a5b24a13fdcf033190873535da22c0b00d1200f4ea936fbaa8a0883a1b6ce3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...