236 matches found
Malicious code in compare-obj (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1892ab55a1dcdd44c7f030aef1ae76a865ffffe4b7a0d4a0492696c149db2e4d The package compare-obj was found to contain malicious code. Source: ghsa-malware 3a7310cc13d858af4c2dfc25ec5d42cf6aa52b00dd7fc28ba0ee069a68e7551b An...
Malicious code in open2internet (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cbe1cf5da09eaf98a63e880a56f10409eaec90f40d9d3a7938b4bea09aeada36 The package open2internet was found to contain malicious code. Source: ghsa-malware 7df2207057942014062d4c686449d02043f6f221e63ee8014453f995f1429200...
Malicious code in medusa-plugin-zalopay (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c3c2a2c7cda991bd113cf7b4cd391451e22bc26d4df3fa7a96669ad4c7d1c219 The package medusa-plugin-zalopay was found to contain malicious code. Source: ghsa-malware...
Malicious code in @asyncapi/keeper (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 04b1620523a3ce8e3a6d91cc4b532723797a0cc56a36e303774caf14ef1acffd The package @asyncapi/keeper was found to contain malicious code. Source: ghsa-malware b4de90c140688e48a7bd263f6ce83227887405e7322154faa001d6bdf787cd...
Malicious code in @asyncapi/server-api (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 228ed250759da1a81a55ea29e65821a583726c0c472d925b0c86d4e44e49e002 The package @asyncapi/server-api was found to contain malicious code. Source: ghsa-malware...
Malicious code in @ensdomains/curvearithmetics (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e8d0412a2e09e5e875c436da127697b8fe370cc878272dc55216b4d6b16d13c The package @ensdomains/curvearithmetics was found to contain malicious code. Source: ghsa-malware...
Malicious code in @ensdomains/ccip-read-worker-viem (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 57b104a492d5893772494de67a98f0114e695a8d24e0444d12d0963029fc4b32 The package @ensdomains/ccip-read-worker-viem was found to contain malicious code. Source: ghsa-malware...
Malicious code in @trigo/atrix-orientdb (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dff5fee3398c42159c86cf250a0b25cae13f5e94b812aa6ef984b8fa8b4bd543 The package @trigo/atrix-orientdb was found to contain malicious code. Source: ghsa-malware...
Malicious code in @trigo/keycloak-api (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 87c444dc1ce66be4f196ec79b9db852b3c8c3bcf029738b61e4471c034c96fe0 The package @trigo/keycloak-api was found to contain malicious code. Source: ghsa-malware...
Malicious code in @asyncapi/generator (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 63359c608231ec06641739879ea8b63b6989462cf0f52e20668b9a1ad27e04c8 The package @asyncapi/generator was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190632 Malicious code in tailwind-pulse (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 994e15b9c34fb68a81553df4c2a51b9412bbcc3543da29a73b6f087507c9ea4c The package tailwind-pulse was found to contain malicious code. Source: ghsa-malware ca854515da8a9c174658ca39afad56810ab87adcaa9eff2fca5043dbd8f50d04...
Malicious code in @aio-commerce-sdk/config-vitest (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 952a468e9821b0b8238bc9a6e6c0f9ee4964fca63e82403ed880279141fb5088 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48590 Malicious code in baidu-tims (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8df1a41ee221825ba6e320bbed60cefc43c2254a86e89ff493988c7b5ee8ad3b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48426 Malicious code in vite-plugin-parseflow (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6264d2fd8e60e842a2b4b3e0d5b8da287d27e021ff47460da70171fb82adf3b0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in summerfi-eslint-config-security-notice (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5d85a7d05234e5c23b0307b2212be7cfec13e9b8a135ffd9faa1bbf24cce1bb7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in internallib_v190 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 75787b9471cecb41a09915fbec6bf00bf40073c0f2da3ad342ee9fb1c83a366c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48267 Malicious code in react-outcome-error-alert (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bf316b6e96271df51ad30f147aa205bb372c306b2a929a854bafb68c41a5cf88 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48149 Malicious code in redirect-cx4vm0 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 885599176b7288b83170a3823028daf5aed3b54943a633f89ceb9e172fa0899a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in karma-verbose-summary-reporter (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bddd0b5c7d33d7e6539290522eaffda37ebf1db1e6e23a08cdcc4042b785ee57 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in grunt-qunit-tap (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b4c0ee680338b5f96b2a084cf0591caad929e414bd9f3f485d06718bc2b548f4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...