3 matches found
Malicious code in python-tdigest-bindings (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5764e30c8f0fdecc8d1be71c4590440c7433bd9ff7ad6d0dad7d32eb41764303 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-716 Malicious code in python-tdigest-bindings (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5764e30c8f0fdecc8d1be71c4590440c7433bd9ff7ad6d0dad7d32eb41764303 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious Package
Overview python-tdigest-bindings is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this...