Malicious code in safe-apps-react-sdk (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4844f797621f2cd62b20851643278b7d27cfc2ca46fdd1485383cd7818d5c0a8 Any computer that has this package install...

Malicious code in safe-react-components (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cb053fb51230ded6b594cc92293d5377c31b4b9fd8d47e14e46d824d7e672910 Any computer that has this package install...

MAL-2025-4 Malicious code in safe-react-components (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cb053fb51230ded6b594cc92293d5377c31b4b9fd8d47e14e46d824d7e672910 Any computer that has this package install...

MAL-2025-3 Malicious code in safe-apps-react-sdk (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4844f797621f2cd62b20851643278b7d27cfc2ca46fdd1485383cd7818d5c0a8 Any computer that has this package install...

Malicious code in aem-react-spa (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 54bb39f84add565409123e2afb033f2b001ab42f9fde0cdb31e4927d222e1419 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-12133 Malicious code in aem-react-spa (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 54bb39f84add565409123e2afb033f2b001ab42f9fde0cdb31e4927d222e1419 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in twilio-voice-react-native-reference-server (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis d9657ad82a767c729a41687ce64fc66b8d9727da18bc576e49a6c362582772d0 The OpenSSF Package Analysis project identified 'twilio-voice-react-native-reference-server' @ 1.1.0 npm as malicious. It is considered maliciou...

Malicious code in react-release-manager (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 3056b390e6fea55432a197cca0d614e66de98058a3e4b6087a547a66327ee6c5 The OpenSSF Package Analysis project identified 'react-release-manager' @ 1.1.3 npm as malicious. It is considered malicious because: - The...

MAL-2024-12117 Malicious code in react-release-manager (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 3056b390e6fea55432a197cca0d614e66de98058a3e4b6087a547a66327ee6c5 The OpenSSF Package Analysis project identified 'react-release-manager' @ 1.1.3 npm as malicious. It is considered malicious because: - The...

Malicious code in react-spring-latest (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b4479151acbc242dd9b62ac68197121a3b973d6eb0b58d6a0ac6900f63b9fe1f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-12114 Malicious code in react-spring-latest (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b4479151acbc242dd9b62ac68197121a3b973d6eb0b58d6a0ac6900f63b9fe1f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in react-native-simpl (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c97d735ebc317ac72a7551682b1498e38aa84ed2e3be90fc979c8c7fedeb8b8f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-12089 Malicious code in react-native-simpl (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c97d735ebc317ac72a7551682b1498e38aa84ed2e3be90fc979c8c7fedeb8b8f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in react-multer (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 876139b096ddb1bf239489a666a6248e65ba5512906c207b40104c7efe2f1616 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-12031 Malicious code in react-multer (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 876139b096ddb1bf239489a666a6248e65ba5512906c207b40104c7efe2f1616 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in hyperion-react-testapp (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 99a7ef31fe91a90b5e4780028e2f80cfe27e522aa931ce419fa5bed74d0c17fa Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11992 Malicious code in hyperion-react-testapp (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 99a7ef31fe91a90b5e4780028e2f80cfe27e522aa931ce419fa5bed74d0c17fa Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in ecpfs-react-build-scripts (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4aa038b17c743c2c728e2687e0f828cbd3b0a8934efb7637a1bdc9879882abf3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11973 Malicious code in ecpfs-react-build-scripts (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4aa038b17c743c2c728e2687e0f828cbd3b0a8934efb7637a1bdc9879882abf3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in csp-react (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 07c56da928c82cee1c2a2332c92447b99ae4d8fa17441e9391ac05a4f38d3323 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...