3 matches found
Malicious code in proton-account (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis edfb8318aed91ce8eb51e269ae47766d501e4e03c1b95f4327570493b4b1379c The OpenSSF Package Analysis project identified 'proton-account' @ 99.99.999 npm as malicious. It is considered malicious because: - The package...
MAL-2023-1273 Malicious code in proton-account (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis edfb8318aed91ce8eb51e269ae47766d501e4e03c1b95f4327570493b4b1379c The OpenSSF Package Analysis project identified 'proton-account' @ 99.99.999 npm as malicious. It is considered malicious because: - The package...
Malicious Package
Overview proton-account is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package wa...