119 matches found
Malicious code in tw-style-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc430da42cdbbb83b681be645a2bbc3f3f2a48e0e19d9d3624b4b3e6f9aa7e92 [email protected] was scanned and produced no findings indicative of supply-chain attack behavior. No install-time lifecycle scripts performing...
MAL-2026-6508 Malicious code in tw-style-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc430da42cdbbb83b681be645a2bbc3f3f2a48e0e19d9d3624b4b3e6f9aa7e92 [email protected] was scanned and produced no findings indicative of supply-chain attack behavior. No install-time lifecycle scripts performing...
GHSA-5WRP-CWCJ-Q835 vulnerabilities
Vulnerabilities for packages: packer-fips, gcp-compute-persistent-disk-csi-driver-fips, redpanda, eck-operator-fips, trident-fips, crossplane-provider-azure-signalrservice, spire-server, k8s-agents-operator-fips, temporal-server-fips, ansible-operator-fips, containerd-fips, grype-db,...
Malicious code in tw-fluid-type (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c3bc3497d6c683f52210ca201500d27cf9e2bcccd976883be2ed85d17569b54 The package advertises itself as a Tailwind CSS fluid-type plugin but ships src/utils/lib.min.js, which is loaded as a side effect when the package's...
Malicious Package
Overview tw-fluid-type is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
MAL-2026-5638 Malicious code in tw-fluid-type (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c3bc3497d6c683f52210ca201500d27cf9e2bcccd976883be2ed85d17569b54 The package advertises itself as a Tailwind CSS fluid-type plugin but ships src/utils/lib.min.js, which is loaded as a side effect when the package's...
Astra Linux – Vulnerability in Linux, Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: net: fixed a use-after-free in twtimerhandler A real-world panic issue was discovered in Linux 5.4. The details of the issue are as follows: - Bug: Unable to handle a page fault for the address: ffffde49a863de28 - Memory layout:...
Malicious Package
Overview @tw-models/storage is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
Malicious Package
Overview @tw-utils/static is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
Malicious Package
Overview @tw-marionette/clipboard is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...
Malicious code in @tw-marionette/clipboard (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9309f16e4a8a15191279d206290e2ab8f8dfa9daeae0df7b92c09bc9a1d726e4 The package @tw-marionette/clipboard was found to contain malicious code. Source: ghsa-malware...
MAL-2026-3070 Malicious code in @tw-marionette/clipboard (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9309f16e4a8a15191279d206290e2ab8f8dfa9daeae0df7b92c09bc9a1d726e4 The package @tw-marionette/clipboard was found to contain malicious code. Source: ghsa-malware...
Malicious code in @tw-models/storage (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1acb608389781c19ee33b5aa795b18367eab2569c00bce5ca9292db0b08f9594 The package @tw-models/storage was found to contain malicious code. Source: ghsa-malware...
MAL-2026-3072 Malicious code in @tw-models/storage (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1acb608389781c19ee33b5aa795b18367eab2569c00bce5ca9292db0b08f9594 The package @tw-models/storage was found to contain malicious code. Source: ghsa-malware...
Malicious code in @tw-marionette/input (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c6b93bf39d5351c220722a3326600c9855309a8e76cb6e10b8cff20f0d9bb102 The package @tw-marionette/input was found to contain malicious code. Source: ghsa-malware...
MAL-2026-3071 Malicious code in @tw-marionette/input (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c6b93bf39d5351c220722a3326600c9855309a8e76cb6e10b8cff20f0d9bb102 The package @tw-marionette/input was found to contain malicious code. Source: ghsa-malware...
Malicious code in @tw-utils/static (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8060c32aabe89eb22a82291f64a25a65a01040bd6aa838ea676e7f500a25f70d The package @tw-utils/static was found to contain malicious code. Source: ghsa-malware 60a80ead8b8afa898624fa960ac7edaf112ac7b55a89001fc4c066971c2c4c...
MAL-2026-3073 Malicious code in @tw-utils/static (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8060c32aabe89eb22a82291f64a25a65a01040bd6aa838ea676e7f500a25f70d The package @tw-utils/static was found to contain malicious code. Source: ghsa-malware 60a80ead8b8afa898624fa960ac7edaf112ac7b55a89001fc4c066971c2c4c...
GHSA-X4JJ-H2V8-HQQV vulnerabilities
Vulnerabilities for packages: kube-fluentd-operator, redpanda, spire-server, ipfs-cluster-fips, trivy-fips, vendir, cloudflared-fips, weaviate, external-secrets-operator, gitlab-operator, timoni, gosu, knative-operator, rancher-fleet, flux-source-watcher, jaeger-fips, sonobuoy, xeol-fips,...
CVE-2026-32288 vulnerabilities
Vulnerabilities for packages: kube-fluentd-operator, redpanda, spire-server, ipfs-cluster-fips, trivy-fips, vendir, cloudflared-fips, weaviate, external-secrets-operator, gitlab-operator, timoni, gosu, knative-operator, rancher-fleet, flux-source-watcher, jaeger-fips, sonobuoy, xeol-fips,...