218 matches found
Malicious code in finkrouter (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 75cee0798d304ff9f0532df845511df6560314b8808664c15b3c3aa18f1953b5 The package's CLI shipped as cli.obf.js, the javascript-obfuscator output with RC4 string-array encoding and control-flow flattening per package.json...
Malicious Package
Overview @aifabrix/miso-client is a malicious package. This package was affected by the 'GlassWorm' supply chain attack. It includes a hidden malicious payload embedded with invisible Unicode characters. These characters hide a decoder that retrieves and executes a concealed payload through eval...
Malicious Package
Overview prefer-let is a malicious package. This package was recognized as part of the 'PhantomRaven' supply chain campaign, which involves credential-stealing malware. The package impersonates well-known ecosystem plugins to deceive developers into installing it. Malicious Behavior The package...
Malicious code in @oku-ui/toggle-group (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bb7f999444c4458fefe9d248fe0eaf410814ecbb5343107fe992033a61d184f3 The package @oku-ui/toggle-group was found to contain malicious code. Source: google-open-source-security...
MAL-2025-191281 Malicious code in @oku-ui/tooltip (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a877d67aa9ecc5ce75cbb742bfc5ec14376ac9423b13080e69cda80ce1f536e1 The package @oku-ui/tooltip was found to contain malicious code. Source: google-open-source-security...
MAL-2025-191378 Malicious code in @voiceflow/test-common (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2f63a9f42565b5107e8f6684e1079874b29df133cb9d0bb1f425adf7317a6a50 The package @voiceflow/test-common was found to contain malicious code. Source: ghsa-malware...
MAL-2025-191251 Malicious code in @oku-ui/avatar (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 23d026f94dcbe031cd4e8c72102d71358e1909bb7b14a95645e7fd46d955e0c9 The package @oku-ui/avatar was found to contain malicious code. Source: google-open-source-security...
Malicious code in @oku-ui/tabs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5ce22352f26f8cfce834a6ce3362835601a48b73356305181e6d2b90062fcfa8 The package @oku-ui/tabs was found to contain malicious code. Source: google-open-source-security...
Malicious code in @afetcan/storage (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4abbde27cce56326711e4e32f42572cb60977ca7ccce4ebf1fcfa558a847c1a6 The package @afetcan/storage was found to contain malicious code. Source: google-open-source-security...
Malicious code in @browserbasehq/stagehand (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0147cee6c903a9fd8dabfedd42c60df91437e6a7a750bebff3c26ce687d4443a The package @browserbasehq/stagehand was found to contain malicious code. Source: ghsa-malware...
Malicious code in @voiceflow/commitlint-config (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0318a598c3e523953b57c870305c3d1237a290a253f3d69dd9f24bf6ba079d6e The package @voiceflow/commitlint-config was found to contain malicious code. Source: ghsa-malware...
Malicious code in posthog-js (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2b422f278bf27e062b349e97360b6919e773122f21656f23d6da583ce7cb1a92 The package posthog-js was found to contain malicious code. Source: google-open-source-security...
Malicious code in @oku-ui/tooltip (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a877d67aa9ecc5ce75cbb742bfc5ec14376ac9423b13080e69cda80ce1f536e1 The package @oku-ui/tooltip was found to contain malicious code. Source: google-open-source-security...
Malicious code in @voiceflow/circleci-config-sdk-orb-import (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 93fddfa88f30512d04aa154c955befc6e560cd4a1600f731643caf20e799e5c8 The package @voiceflow/circleci-config-sdk-orb-import was found to contain malicious code. Source: google-open-source-security...
Malicious code in silgi (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1bab0537c840944fd6fac261deaaca0e3581745c3412d28b7ae3f0f014361c70 The package silgi was found to contain malicious code. Source: ghsa-malware 93a7af2f566e0384a306202ff261bb7cdc496fb32e582afda5808432c3ca4935 Any...
Malicious code in @voiceflow/stitches-react (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 06695269b63d5e1d5d67fbf2ec3e8ba8a46439f10a30ca584e674ad93dbf53f1 The package @voiceflow/stitches-react was found to contain malicious code. Source: ghsa-malware...
Malicious code in @dev-blinq/ai-qa-logic (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6bcfefccc1ff9a7579321c6e45d16fc6aa94b9eaa45952fe47d415c2ffcde9a4 The package @dev-blinq/ai-qa-logic was found to contain malicious code. Source: ghsa-malware...
Malicious code in @voiceflow/chat-types (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 427a4ea537f2410d7af761667dfaa0440a0ddbf74e1a963230491a8d6155e4fd The package @voiceflow/chat-types was found to contain malicious code. Source: ghsa-malware...
Malicious code in selenium-session-client (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c213ecffb94ad5db9053c2dcf20681d6fe3a5baa0b8ed42d87e01c7ef930a704 The package selenium-session-client was found to contain malicious code. Source: google-open-source-security...
Malicious code in @voiceflow/natural-language-commander (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bcffcb39c546d02117506c26844a1fddcedc61f18cd934b27642817c62189437 The package @voiceflow/natural-language-commander was found to contain malicious code. Source: ghsa-malware...