MAL-2026-3724 Malicious code in @convera/ui-shared (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3fa0960816c1204042cecc61c5337e5db2c1407f5325cfc2ed26e43b5dc054d0 On npm install, the package's preinstall.js collects os.hostname and os.userInfo.username and sends them as query parameters /?hn=&un= via...

Malicious code in @3stripes/shared (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ca39203b484afe25fca27596d3c3c81a0a6765ad88d3b129871375127bdb5ea The package @3stripes/shared was found to contain malicious code...

Malicious code in @fyxer-ai/shared (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1c3a41d542ea1950a8f7bee29e8c4602a2553a5b612c7763af1f7a80246f708f The package @fyxer-ai/shared was found to contain malicious code...

Malicious Package

Overview mona-shared is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorshi...

MAL-2026-210 Malicious code in @workleap-ai/shared (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2800f2cfba8ac6e7a16ef977484e4da4d360c859848daedb5220c7d3595653e1 The package @workleap-ai/shared was found to contain malicious code. Source: ghsa-malware...

MAL-2025-48350 Malicious code in @global-engineering-shared/gweb-material-global (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2ba104b6627fe8df8bd293bf059d78a48888e55fb0e74a51fad7270cfa21a15d Any computer that has this package installed or running should be considered...

NestJs-Microservices-POC

NestJS Microservices Proof of Concept A comprehensive demonst...

MAL-2025-6176 Malicious code in kiwi-shared (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0dcbebb4e37e86a0a7878eafb520d0acd1ad5d8a97aabcce547b807bddec6cef Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-5205 Malicious code in rma-shared (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware afd3860d2c559adbec7c4b9f7969ba91923264af177c77229e3f4a50e31f9ac7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious Package

Overview eg-shared is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package was...

Malicious code in tslint-shared (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 91daeedfa5a3bdb69e72e839dedfdd16a269ebd75debe814ea166782b7b06277 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in internal-hr-form-shared (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 61f4c59f93a033d1b3f59185034a97ff1ebfebcf22ec2a26d7b2aa6809dc0213 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...