3 matches found
Malicious code in seafoam-desktop (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 11b7b515412cb320d382cffb4a3abe4fa232556d7db6ac3dde904bd295b279a3 The OpenSSF Package Analysis project identified 'seafoam-desktop' @ 10.0.0 npm as malicious. It is considered malicious because: - The package...
MAL-2023-1292 Malicious code in seafoam-desktop (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 11b7b515412cb320d382cffb4a3abe4fa232556d7db6ac3dde904bd295b279a3 The OpenSSF Package Analysis project identified 'seafoam-desktop' @ 10.0.0 npm as malicious. It is considered malicious because: - The package...
Malicious Package
Overview seafoam-desktop is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package w...