Malicious code in @aledan007/tester (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ab03e3eef2f59f358cdaacedf2d9facb12077110c5402ad36aad6e3581e66439 The bundled server file dist/server/index.js contains a hardcoded reference to the attacker-controlled domain https://evil.attacker-example.com...

MAL-2025-190983 Malicious code in package-tester (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1888e34e329bc0ea8f84900de1b8ac52cf5271deb84547900790be3335b0d3e4 The package package-tester was found to contain malicious code. Source: ghsa-malware 1cd7a624ca6e7cb7928904d72a30bb889766f3c6009a09fb20758a0a29b56255...

EUVD-2025-199060

Malicious code in package-tester npm...

Malicious code in package-tester (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1888e34e329bc0ea8f84900de1b8ac52cf5271deb84547900790be3335b0d3e4 The package package-tester was found to contain malicious code. Source: ghsa-malware 1cd7a624ca6e7cb7928904d72a30bb889766f3c6009a09fb20758a0a29b56255...

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...