89 matches found
Malicious code in viem-multichain (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 000bdcb32a8ca1f6657425685c88c4b60917055d5a202275c50d004462e37459 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in cortana-md-bot (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 686dc6172d061151a94189d41cd564a6127d00f10af75880962a357301ec135e The package cortana-md-bot was found to contain malicious code. Source: ghsa-malware a712b3a56136d272ebf1a688ff9ea1cc572023730622963df1e6e82389177d28...
MAL-2026-1165 Malicious code in @global-dax-ad-platform/dax-components (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e50b13916c14b17a01e550d32711ed37f8842bc2a0eede3ea254df64f7a0af1a The package @global-dax-ad-platform/dax-components was found to contain malicious code. Source: ghsa-malware...
MAL-2026-648 Malicious code in yazxzpedia (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0f94694d3882914e6f75cc35db5533b7d7c4d9caebb2631033de332d3c49e562 The package yazxzpedia was found to contain malicious code. Source: ghsa-malware e97d515edc36ba99b0d5fa4cc5cd35798ff96229f05a9f93ba6dbef0631f1ac0 Any...
Malicious code in francium-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7bbfe7cfa0e201004579dc73a60307dbd93e6507801d3dd767b689cb748535c1 The package francium-utils was found to contain malicious code. Source: ghsa-malware 36e968a97c914ae6c1bf4fb980564d69546cc92105d1be341f56c933ec2caa12...
Malicious code in sort-imports-es6-autofix (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 20061f2672fcbe82b13ab8e09c629d93991ef45200bb30c7bf9a1dc78cbb4230 The package sort-imports-es6-autofix was found to contain malicious code. Source: ghsa-malware...
Malicious code in chai-as-awaited (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0e469d359c2a3a5ca20b47691e64d2330d38d9ad0f173fb440b2ac677d333d6a The package chai-as-awaited was found to contain malicious code. Source: ghsa-malware df0ec4507c7a16056091fbf705d97408c308041bf9b5798d113fdc3042a00b3...
Malicious code in expo-router-on-rails (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 92bd7bcf264644e954c78205f555c4b45d42e4e628db37666799375a9a8777f5 The package expo-router-on-rails was found to contain malicious code. Source: ghsa-malware...
Malicious code in mojio-client-lite (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5fea28b1c502ade1afb436a22ffc2bd83e1c413dd85b274370f805ec0760be91 The package mojio-client-lite was found to contain malicious code. Source: ghsa-malware...
Malicious code in types-lodash.es (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ad198ed6efdd1d7367a198d4b5c761b7ecf5421158cf8cce424a4f693598f1f The package types-lodash.es was found to contain malicious code. Source: ghsa-malware cd47d05a7a2bdd9fbd2f267aaeb6664d79583714a396f493858e926e1cc25f0...
Malicious code in unused-imports (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 01031534d46574b4aca0e5341d43399ac25cf7c751f841cf6af2eec7b73fa797 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in private-callouts (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2a2946aeff32829327711ed5cbdd0127273806a52a23e9be1f96113c04562bc6 Any computer that has this package installed or running should be considered...
Malicious code in redirect-za4566 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 079f93dd87bd8ef6e446d2275dc64e4b6e5e995fa22a692166b41c03eac59d02 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @winstan/vinston (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 701c8532f7235adb3a68d19af65d9a7b583be566885ae32b443bb5789e58ec84 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in dowload_ebok_see_how_they_lie_by_sue_wallman_7f3za (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7fa49dec8d439a9b9749b02cc494c69fbc1a39a7aa95be72aff02ef85608c978 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in stringmaster-pro (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 903d35378ef4445c057cd090e43dfa9efdd364da38c3a11b6d993d6b9c91b8b4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in jsonstylizer (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 085d3b8a0491210bdcc534a63cbf29b4342b14a727d38e4bea0c8fae2f747dd1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in react-redux-stylizer (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a197696811f0bf0075aceaf1c780dc72528144a4fa028d9dabdc7f6999144f42 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in nestjs-io-helper (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e0c13b0bbe7c82d1722e7645dc644ec8aa06ae8ae02ffbb4de663b4a2e9de09f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in gitdependencyresource (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 83fef2647750041b69c08748c2113e2bacb9b4cb630d247951daa865f4ef7743 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...