3 matches found
Malicious code in wm-dagre (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2f9e690969a3ea29abd36c88c828fccb854f99546a49b3272c65e9fc218fd690 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-7192 Malicious code in wm-dagre (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2f9e690969a3ea29abd36c88c828fccb854f99546a49b3272c65e9fc218fd690 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious Package
Overview wm-dagre is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package was...