13 matches found
Malicious Package
Overview @doaction/types is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
MAL-2026-154 Malicious code in ncodeauth (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f00fcaac77b28bc2ce7fd09837de2d46fd48c6bd32d11d39a98e2450d754843f The package ncodeauth was found to contain malicious code. Source: ghsa-malware 844237bb9b9aab92cf332246dacc9675c295acc85e6f914b9b9da957f04f7490 Any...
Malicious Package
Overview usaa-authentication-mocks is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...
Malicious Package
Overview elf-stats-candystriped-snowglobe-426 is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization a...
Malicious Package
Overview commondatalayer-framework is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...
MAL-2025-47970 Malicious code in @raydium-utils-v5/fetch-wallet-balance (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6767cf6fa4bd28e8f2921afd36fd888dc17d2fa9fa759e4d279464c8cc45a387 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-47392 Malicious code in @things-factory/shell (npm)
The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2ebd494f09184269de61b62501f8b32bfc56c353807f7e7356cecc35c5ab1346 Any computer that has this package installed or running should be considered fully compromised. All...
Malicious code in @art-ws/slf (npm)
The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware baf90d1c3b7ba54034d1d4c17018409a40ca9c0b81dce2f0cc612bf5e7358a44 Any computer that has this package installed or running should be considered fully compromised. All...
Malicious Package
Overview login-tokenizer is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
Malicious code in idt-validation-paypal (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0d72d5fae92d76007bde68b9b614eb69f67499c1fdc108ee21598c9df3e8937b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @sheingroup/justakiss (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware dcd17fcad0f2896dfc1a21c4b0e65d0db6a1deae574d2ee5f8a51b31309b3290 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in wallet-recovery-wizard (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e24d309152b39f9727425357be4a99d4259ec2449c36c2dddb09ed532909cede Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in apex-chart-react (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d32cd53667dc0ab701e23650c529fd397e831ec601da7f90d3da95f906ae292b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...