12 matches found
MAL-2026-4188 Malicious code in @limebike/supreme (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4f65cdcb27200e24464982c0678d9dd556342d53886e4d5378da5d9c664fe1c7 Both preinstall and postinstall lifecycle hooks in package.json execute index.js, which collects the installer's hostname, non-internal network...
MAL-2026-3284 Malicious code in tinfoil-shops (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 12060d7ba8ada1f0215277ed3936de1f8e9f03d47430fe816b634778291d7024 The package tinfoil-shops was found to contain malicious code. Source: ghsa-malware 5fafb06ed458abc37062e49cbd57b0e5c348dba7d88d1524ca5df198216d7326...
MAL-2025-190176 Malicious code in vite-chunk-master (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1fa857f9f07f371efc55f392a0fcf81beea9480a42476b38fe80cf496b37ba8d The package vite-chunk-master was found to contain malicious code. Source: ghsa-malware...
Malicious code in deltaprime (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f16f2e9ed1af46506269c020785db3858769c420b642162e9fa880a6d2152edb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in octopus-library (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f4f2d9eb61053da88b3c1c9f3f9cda88f3974f897595acd8e1c42ebef0aec126 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in wlwz-2312-1601 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c5bc0e7158d5619f4e675f0c91a267739b04b6497be26ddeaa336c28335e8a06 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in wlwz-2312-3606 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 95c379132458ded3ff8a9400c36f4601958d2cf377f082e2acc8ed174fbbfc63 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in s3mock-testsupport-common (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware da701e874fffc0d3cb4edaa4561c630f6837ad971b3852258c4cf999277f4442 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in adsinterceptor (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 686e0a79fbf19d2170792e89b095a4dc3253917c8e75e842df1f1f7059bb229c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in lro (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7a142825e7cc04821ac7056d56214c9a77a4e0bf5f4f74506207205b21f7b985 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ember-getowner-polyfill.import (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware de299415a84d24c99737d1dc90038b9ef5bf3e02dec1af6e1308fc486f1d4c69 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @dsgnsys/editor-elements-design-systems (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 457a4e00cb01706883e4fbdb542cc7cd24dc705682b26d4e0b0a859bc26a77dc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...