81833 matches found
MAL-2026-3458 Malicious code in @tallyui/connector-vendure (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0283da4a59287c5418e3485a9a642cfbb9cc387f5e1ab4c120af92199daa0970 The package @tallyui/connector-vendure was found to contain malicious code. Source: ghsa-malware...
Malicious code in @tallyui/pos (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5279d1272d0ce8f67df10c573ffad904cc0db1c047aad8cea501e1068564361e The package @tallyui/pos was found to contain malicious code. Source: ghsa-malware 1a3e5194d9053a2e2e63e6d5b98d169d862ad969c78986fac81af7ee2557f4b5 A...
Malicious code in @opensearch-project/opensearch (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1668370f4091d14b4e74ad0e9b25c70ccbc5bf7fb7d97f535212ce2289e71347 The package @opensearch-project/opensearch was found to contain malicious code. Source: ghsa-malware...
MAL-2026-3434 Malicious code in @opensearch-project/opensearch (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1668370f4091d14b4e74ad0e9b25c70ccbc5bf7fb7d97f535212ce2289e71347 The package @opensearch-project/opensearch was found to contain malicious code. Source: ghsa-malware...
Malicious code in @tanstack/vue-start-client (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b11c2f37aa0a8c4d809c3136f8f7c227c463f4f8e7a2b4515336b730941dcc4c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2026-3499 Malicious code in @tanstack/vue-start-client (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b11c2f37aa0a8c4d809c3136f8f7c227c463f4f8e7a2b4515336b730941dcc4c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2026-3449 Malicious code in @squawk/navaid-data (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 966263f7b58fca4470e282294f432c7c78d25b154b3c6daf6580d2b426a5e004 The package @squawk/navaid-data was found to contain malicious code. Source: ghsa-malware...
Malicious code in @squawk/geo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b40cdbd9c6b1d4f4cfb2769aa09dc2a6c1375426de1eaa166de681740f556cd4 The package @squawk/geo was found to contain malicious code. Source: ghsa-malware ff0e460885b141aab0b22a38b446936439b76287160c78aaad30d7ad4ab22ed9 An...
MAL-2026-3437 Malicious code in @squawk/airspace (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f192ee0d3c243baafe6583a42e02e7da99bc6feb8cf6d3eccc7b8680410c7b3e The package @squawk/airspace was found to contain malicious code. Source: ghsa-malware a536c48efa47c0e621041237b961a2d8c3c19fc35d1272167a87cffb01a74e...
Malicious code in @squawk/airspace (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f192ee0d3c243baafe6583a42e02e7da99bc6feb8cf6d3eccc7b8680410c7b3e The package @squawk/airspace was found to contain malicious code. Source: ghsa-malware a536c48efa47c0e621041237b961a2d8c3c19fc35d1272167a87cffb01a74e...
Malicious code in ts-dna (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 90ca06cbc068262aa930c182a5904cba8d5748f32663b648a0b78a183f4fe219 The package ts-dna was found to contain malicious code. Source: ghsa-malware a5660e49e1a2b3661bdf6ce230d7f75889675d5690086f7da2a2a04391dd13a5 Any...
Malicious code in @squawk/airports (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 01fabaad6adcf6ba78ba71fb750d70c8e3f3a1e524a75a6b8bf8ddc7769ac5b0 The package @squawk/airports was found to contain malicious code. Source: ghsa-malware f8adf8853b03c99d84b919062f8c688b4bfb42f72cc9de33299fe3e3f9a2b9...
MAL-2026-3436 Malicious code in @squawk/airports (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 01fabaad6adcf6ba78ba71fb750d70c8e3f3a1e524a75a6b8bf8ddc7769ac5b0 The package @squawk/airports was found to contain malicious code. Source: ghsa-malware f8adf8853b03c99d84b919062f8c688b4bfb42f72cc9de33299fe3e3f9a2b9...
Malicious code in @squawk/notams (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c1516c9c418f64f53d6e8e9ac55eb838fcaa40df0d637553dce1dc3569823edb The package @squawk/notams was found to contain malicious code. Source: ghsa-malware fd709d66feb81a447d1379117eed1ac084a296695f6c19561e0f9048c46abd49...
MAL-2026-3451 Malicious code in @squawk/notams (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c1516c9c418f64f53d6e8e9ac55eb838fcaa40df0d637553dce1dc3569823edb The package @squawk/notams was found to contain malicious code. Source: ghsa-malware fd709d66feb81a447d1379117eed1ac084a296695f6c19561e0f9048c46abd49...
Malicious code in @squawk/navaids (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eb4f88ca950b4d0ba1fb9666f866d8c742a9b0aeeb2657fadae9ed5dcd30359c The package @squawk/navaids was found to contain malicious code. Source: ghsa-malware 62f878f444def0ffdccd14f64cba4ee46bf960745aefb09d0c0ee16ed5ded86...
MAL-2026-3480 Malicious code in @tanstack/router-vite-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 59c369975f931e9f8a4ca499e887c2ec41f7d1dbfcdcb83fa9e6ec9717ea4910 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2026-3483 Malicious code in @tanstack/solid-router-ssr-query (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8693692b7ab31b63eb7411750d5b8798beec7ab29dddc1adea60186d354f4ed8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @squawk/procedure-data (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9fca1f05eea030fa48afc7e6e8bb177abb0f73793f376dbb7bc4e2d8a2a16a1d The package @squawk/procedure-data was found to contain malicious code. Source: ghsa-malware...
MAL-2026-3482 Malicious code in @tanstack/solid-router-devtools (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d97a7cf294a17c17e22c7eead7d3de9f693c5488aecba96129d5b79b52f430de This version falls within the @tanstack/ package family compromised on 2026-05-11. The campaign published 42 packages × 2 versions each with the...