MAL-2026-3636 Malicious code in knot-simple-formatter (RubyGems)

--- -= Per source details. Do not edit below this line.=- Source: google-open-source-security a4e4f74e90479d472a307d311d48214827e21cf93ecf9b0b62ff2cb72adb2c9e This package is a malicious packages part of the Go BufferZoneCorp and RubyGems knot-theory clusters. The packages in this cluster steal...

MAL-2025-46949 Malicious code in monolith-twirp-features-featuresync (RubyGems)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis f53c57dca1a60f5e0bcea26028d79bc5d8f4427b2dfb2dc1c29c9babe625a2bb The OpenSSF Package Analysis project identified 'monolith-twirp-features-featuresync' @ 1.0.0 rubygems as malicious. It is considered malicious...

Malicious code in monolith-twirp-notifications-notifyd (RubyGems)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 839538184262ac542c8ff20a2f5c8e1de29137acee4cf16ae1310f8856960426 The OpenSSF Package Analysis project identified 'monolith-twirp-notifications-notifyd' @ 1.2.8 rubygems as malicious. It is considered malicious...

Malicious code in zbt_element_definer (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in mars-rover_alvin (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in has-changelogs (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in fluent-plugin-container-logs_filter (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in dt_rake (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in devino-sms (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in capistrano_telegram-notification (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in appium-lib (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in appium-doc_lint (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in anything-slider_rails (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in alipay-global (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in acts-as_liked (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in active-admin_globalize3_locale_selector (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in aasm-ohm_persistence (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in a1426kt-prime-number (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

Malicious Package

Overview capistranostats is a malicious package. Affected versions of this package were found to be a Malicious Package, as it utilised typosquatting to run Malicious 3rd party scripts. It replaced genuine packages using an and replaced it with - and vice versa Remediation Avoid using...