2407 matches found
Malicious code in eu.tsystems.mms.tic.testerra.plugins.azuredevops.tests (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 3ba3635b5a021d627f0f232cf46f53846cc953c75659700eae5ee919ebfca455 The OpenSSF Package Analysis project identified 'eu.tsystems.mms.tic.testerra.plugins.azuredevops.tests' @ 1.0.0 npm as malicious. It is...
MAL-2023-1177 Malicious code in eu.tsystems.mms.tic.testerra.plugins.azuredevops.tests (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 3ba3635b5a021d627f0f232cf46f53846cc953c75659700eae5ee919ebfca455 The OpenSSF Package Analysis project identified 'eu.tsystems.mms.tic.testerra.plugins.azuredevops.tests' @ 1.0.0 npm as malicious. It is...
MAL-2023-1124 Malicious code in bitshares-ui-style-guide (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 429c86abce3dc07c32dc57d2f69b0a211675f08c5f2043d0ea8d67210c004995 The OpenSSF Package Analysis project identified 'bitshares-ui-style-guide' @ 1.0.3 npm as malicious. It is considered malicious because: - The...
Malicious code in modified_bayes (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1c5711b3c10ba19ca7c68581b9cd246029ba621b35c0371e4a043d69050b9363 The OpenSSF Package Analysis project identified 'modifiedbayes' @ 10.1.0 rubygems as malicious. It is considered malicious because: - The packag...
MAL-2023-1429 Malicious code in modified_bayes (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1c5711b3c10ba19ca7c68581b9cd246029ba621b35c0371e4a043d69050b9363 The OpenSSF Package Analysis project identified 'modifiedbayes' @ 10.1.0 rubygems as malicious. It is considered malicious because: - The packag...
Malicious code in ban-notifier4 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 40f50b4925a587e36b4236377850d644915a64a9183b4f152ac4f99cefffd557 The OpenSSF Package Analysis project identified 'ban-notifier4' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...
MAL-2023-1121 Malicious code in ban-notifier4 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 40f50b4925a587e36b4236377850d644915a64a9183b4f152ac4f99cefffd557 The OpenSSF Package Analysis project identified 'ban-notifier4' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...
MAL-2023-11 Malicious code in microsoft_kiota_http (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1aea1a60f074d92d58e8e1644f08af16097bc4fc496a7acc2b60f586ce504017 The OpenSSF Package Analysis project identified 'microsoftkiotahttp' @ 6.0.1 rubygems as malicious. It is considered malicious because: - The...
Malicious code in not-a-real-project (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 93a590cea516241fd5f5c305b133d564e87c9308fd1378a44f6a689e0ce972f7 The OpenSSF Package Analysis project identified 'not-a-real-project' @ 0.0.0 npm as malicious. It is considered malicious because: - The package...
MAL-2023-1252 Malicious code in not-a-real-dep (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 784465edafb8e247845de45eb1f9c8d0b19b03706e98e861f1a570732d66cba5 The OpenSSF Package Analysis project identified 'not-a-real-dep' @ 0.0.0 npm as malicious. It is considered malicious because: - The package...
MAL-2023-1115 Malicious code in api-code-capture-chrome-extension (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis f1e44f89c4e3876559f46852c9a652c510df9384be3ffd0180e36f9fd64e8cfe The OpenSSF Package Analysis project identified 'api-code-capture-chrome-extension' @ 20.0.1 npm as malicious. It is considered malicious becaus...
MAL-2023-1113 Malicious code in another-dev-dependency3 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 2abbde4690eaad1109288e153cb368899f235ec85219b2f867f2f11cfad6a078 The OpenSSF Package Analysis project identified 'another-dev-dependency3' @ 3.0.0 npm as malicious. It is considered malicious because: - The...
MAL-2023-1303 Malicious code in spring-boot-admin-virgil-custom-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bf3bf8c73b2a5a04555aa1692341d9861a37ad32f428b123c88751322e74c66d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-1337 Malicious code in virgil-spring-boot-starter (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1d7b81762635da58744d7567d3ac4b1bf12da5d3c72070a9d2260d40463fcdbb The OpenSSF Package Analysis project identified 'virgil-spring-boot-starter' @ 20.0.0 npm as malicious. It is considered malicious because: - Th...
MAL-2023-1182 Malicious code in fkletbbpoc (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 125b0aa54538899871c0071ae4b76678012092032ff03d6ad08c4ecf1a2fc7d7 The OpenSSF Package Analysis project identified 'fkletbbpoc' @ 0.0.1 npm as malicious. It is considered malicious because: - The package...
Malicious code in opbox-seller-shop-service (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis c62594db29ca0473a517e2d3ed643575d938a4d43a58ee4420b2b304b8121b32 The OpenSSF Package Analysis project identified 'opbox-seller-shop-service' @ 99.0.0 npm as malicious. It is considered malicious because: - The...
Malicious code in opbox-web (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 4711ddc1c31860a921bc52eb8e87d8e43815d791684cedb6686ac77c65cc7125 The OpenSSF Package Analysis project identified 'opbox-web' @ 99.0.0 npm as malicious. It is considered malicious because: - The package...
MAL-2023-1274 Malicious code in proton-pack (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c87e5ff9b7fca2cbd9b8c5f66c8849dd5f06f3e36574d1e902b216d332a207ac Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-1342 Malicious code in webpack-cli.legacy (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 22737261df7f74819a3f3f968e6516db5e37f6621827d6148b290f7650b9992f The OpenSSF Package Analysis project identified 'webpack-cli.legacy' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...
MAL-2023-1282 Malicious code in react-test-renderer-17 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 44a1a6575888ff4c59c07150c3211aa61af227fb9d17025b72af93ba65153098 The OpenSSF Package Analysis project identified 'react-test-renderer-17' @ 1.0.0 npm as malicious. It is considered malicious because: - The...