MAL-2025-4893 Malicious code in talkingagent (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3405c426e57de2c17c74c5c754610648c613e377d1b63a59e24d767241599030 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3096 Malicious code in disputeapiserv-paypal (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c234d2a403bb56f5512a4d647adfb222f46622a11a2689576a5f882442a4b861 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2020-26294

Vela is a Pipeline Automation CI/CD framework built on Linux container technology written in Golang. In Vela compiler before version 0.6.1 there is a vulnerability which allows exposure of server configuration. It impacts all users of Vela. An attacker can use Sprig's env function to retrieve...

MAL-2024-12046 Malicious code in tiktok_embed_v2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cedd877746749d5c38833b338e2e72d91bc521f21eaa22de4fa05aca509fa7e5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11984 Malicious code in gft-view-helpers (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c12651d76770f09bfa7e61edc4e020f6e33df757bbe945abc6b1c614df0717de Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11942 Malicious code in atlantis-api (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 094067edee2b5602a50659db017bc266d4d2a8b841374fec88825e3e0dc47816 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11938 Malicious code in abacus-frontend (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0bb03bbb0a4e31bfc1d2ca22ccbfc5090ab234c3359195c560188f54d9148113 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-3239 Malicious code in fuckfuckapk (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bbf3d4ec8ab209ec84f5dc67c7a556ebb8b3a7d5b1cb59a2af2e3f58287e3c73 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-500 Malicious code in @phabricator/fetlife-assets (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 020e3c678f25d6e919f87597cf9a53d194002258c3c680e0c32d525e7f46937b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...