4 matches found
EUVD-2022-4107
Malicious code in bioql PyPI...
MAL-2025-5985 Malicious code in dom-navigation (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c04a85ac6aa223bac4b94bab32834c067d4bcec58ef085965d4a856eb46903ed Any computer that has this package installed or running should be considered...
Security above all else—expanding Microsoft’s Secure Future Initiative
Last November, we launched the Secure Future Initiative SFI to prepare for the increasing scale and high stakes of cyberattacks. SFI brings together every part of Microsoft to advance cybersecurity protection across our company and products. Since then, the threat landscape has continued to rapid...
GHSA-Q4W5-4GQ2-98VM Symlink following allows leaking out-of-bounds YAML files from Argo CD repo-server
Impact All unpatched versions of Argo CD starting with v1.3.0 are vulnerable to a symlink following bug allowing a malicious user with repository write access to leak sensitive YAML files from Argo CD's repo-server. A malicious Argo CD user with write access for a repository which is or may be us...