MAL-2026-5746 Malicious code in xy-shared (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d631443367624273d8b7d3347b2e173a72f3f7447424f25424dab8e68c4b1a25 package.json wires both preinstall and postinstall to node callback.js, which auto-executes on npm install. callback.js collects username, uid/gid,...

Malicious code in @demica/shared (npm)

Note: This report is updated by a verification record Dep-confusion squat of internal @demica/shared at sentinel high version 99.99.100 + auto-exec postinstall canary.js beaconing to RAW IP 157.230.17.236:80/dc. Sentinel-high-version + auto-exec beacon = MALICIOUS per operator policy c913;...

MAL-2026-3724 Malicious code in @convera/ui-shared (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3fa0960816c1204042cecc61c5337e5db2c1407f5325cfc2ed26e43b5dc054d0 On npm install, the package's preinstall.js collects os.hostname and os.userInfo.username and sends them as query parameters /?hn=&un= via...

Malicious code in @3stripes/shared (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ca39203b484afe25fca27596d3c3c81a0a6765ad88d3b129871375127bdb5ea The package @3stripes/shared was found to contain malicious code...

Malicious code in @fyxer-ai/shared (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1c3a41d542ea1950a8f7bee29e8c4602a2553a5b612c7763af1f7a80246f708f The package @fyxer-ai/shared was found to contain malicious code...

Malicious Package

Overview mona-shared is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorshi...

MAL-2026-210 Malicious code in @workleap-ai/shared (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2800f2cfba8ac6e7a16ef977484e4da4d360c859848daedb5220c7d3595653e1 The package @workleap-ai/shared was found to contain malicious code. Source: ghsa-malware...

MAL-2025-48350 Malicious code in @global-engineering-shared/gweb-material-global (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2ba104b6627fe8df8bd293bf059d78a48888e55fb0e74a51fad7270cfa21a15d Any computer that has this package installed or running should be considered...

NestJs-Microservices-POC

NestJS Microservices Proof of Concept A comprehensive demonst...

MAL-2025-6176 Malicious code in kiwi-shared (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0dcbebb4e37e86a0a7878eafb520d0acd1ad5d8a97aabcce547b807bddec6cef Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-5205 Malicious code in rma-shared (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware afd3860d2c559adbec7c4b9f7969ba91923264af177c77229e3f4a50e31f9ac7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious Package

Overview eg-shared is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package was...

Malicious code in tslint-shared (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 91daeedfa5a3bdb69e72e839dedfdd16a269ebd75debe814ea166782b7b06277 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in internal-hr-form-shared (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 61f4c59f93a033d1b3f59185034a97ff1ebfebcf22ec2a26d7b2aa6809dc0213 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...