39 matches found
MAL-2025-41345 Malicious code in prettier-v2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis dd4a56ce83136ba0c08709c38d11bee44b0351d7dd9c5bca68b457fcb1b44be9 The OpenSSF Package Analysis project identified 'prettier-v2' @ 99.0.9 npm as malicious. It is considered malicious because: - The package...
MAL-2025-41344 Malicious code in xpoc-ts-lib (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis d6aabe2bdc2f87978954e778f491ee06641df1ca2ebdce2b151881f7b8c7c063 The OpenSSF Package Analysis project identified 'xpoc-ts-lib' @ 99.0....
MAL-2025-41333 Malicious code in this-should-be-ignored (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b64896576ac7254afb7e1202835ec4f39b5b64af2cb380a7bf3b172deba75497 The OpenSSF Package Analysis project identified...
MAL-2025-41335 Malicious code in typescript-5.3 (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 22e5eb382ae93ec26870214b5e9a2d6b039c55967a550969c2ccdf758b96f911 The OpenSSF Package Analysis project identified 'typescript-5.3' @...
MAL-2025-41324 Malicious code in rush-cyclic-dep-1 (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis dc3b2fad762b8091211ef41ee84b4321f34789e8957982339cb99ad5c439f9bf The OpenSSF Package Analysis project identified 'rush-cyclic-dep-1' @...
MAL-2025-41329 Malicious code in schema-author (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis d20adbaf902fa0024093fa6d9d1b21fe5c6f50e1fd5f11e13549e4cfe38e6de4 The OpenSSF Package Analysis project identified 'schema-author' @...
MAL-2025-41325 Malicious code in rush-cyclic-dep-2 (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 8e5cc5e314974fca4f3bebd4496f775715aaac26a94fcde395ec10bae8ac3758 The OpenSSF Package Analysis project identified 'rush-cyclic-dep-2' @...
MAL-2025-41318 Malicious code in rehype-headerless-table-plugin (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 5f663df30b939e46c2ebd664fc1dae15c177895427b67b8b2b3d646b000bc64f The OpenSSF Package Analysis project identified...
MAL-2025-41312 Malicious code in msalv2 (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis cca3fbaf2aacbd857c8661a88233c1a756fd75c6f60d675a32374d9c95cc019e The OpenSSF Package Analysis project identified 'msalv2' @ 99.0.9 npm...
MAL-2025-41313 Malicious code in oracle-agent (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis d9d5212e69633af1e55a9b35fa8e007e2b50c2905c3549e44f047e8ab061e157 The OpenSSF Package Analysis project identified 'oracle-agent' @ 99.0...
MAL-2025-41314 Malicious code in other-pkg-b (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis ab79e006d7046832f724293ad8a66618e70b615bb6e223169ac1bda1cae5d4df The OpenSSF Package Analysis project identified 'other-pkg-b' @ 99.0....
Malicious code in other-pkg-b (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis ab79e006d7046832f724293ad8a66618e70b615bb6e223169ac1bda1cae5d4df The OpenSSF Package Analysis project identified 'other-pkg-b' @ 99.0....
MAL-2025-41315 Malicious code in package-extractor-test-02 (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 697a859ea4113bd747e08d7e374aff232885ac108926a2f0b8be99612d3e67d0 The OpenSSF Package Analysis project identified...
Malicious code in microbit-robot (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 77f4b228f14d3fee9b979e52a9e8e6966e3cc81cacd2d9aa2b1aaf00b96789fa The OpenSSF Package Analysis project identified 'microbit-robot' @ 99.0.9 npm as malicious. It is considered malicious because: - The package...
MAL-2025-41307 Malicious code in memory-providers (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis d2910b2a9c4078e4f408b3f3a1685db38653402bd9f39577a9811f7dbffe3d3a The OpenSSF Package Analysis project identified 'memory-providers' @ 99.0.9 npm as malicious. It is considered malicious because: - The package...
MAL-2025-41309 Malicious code in montage-agent (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 285d4d62fe8147f0b104cedb1c1bc54ecc1a11483fb2240f89369ddd2de3b7d3 The OpenSSF Package Analysis project identified 'montage-agent' @ 99.0.9 npm as malicious. It is considered malicious because: - The package...
MAL-2025-41311 Malicious code in msalv3 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 3e7e45404dc3788af0d1bba78f40c8db46cd615d5cb9f1164859a669245102f0 The OpenSSF Package Analysis project identified 'msalv3' @ 99.0.9 npm as malicious. It is considered malicious because: - The package communicat...
Malicious code in msalv1 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 094e1e50bfda807b0aadbff380426c3058c835f4be9c1e5cc668a26665739454 The OpenSSF Package Analysis project identified 'msalv1' @ 99.0.9 npm as malicious. It is considered malicious because: - The package communicat...
Malicious code in knowpro-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1c8dc0e73cf498b9479d7045fd9cea3dc3db6ef7ca2ada5316282da6a97ed805 The OpenSSF Package Analysis project identified 'knowpro-test' @ 99.0.9 npm as malicious. It is considered malicious because: - The package...
MAL-2025-41305 Malicious code in list-agent (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis a276cf4b05366ccbd6833fab14810e95cdcb847d5c8edea81d505e0f39f4ca7c The OpenSSF Package Analysis project identified 'list-agent' @ 99.0.9 npm as malicious. It is considered malicious because: - The package...