2 matches found
Malicious Package
Overview workspace-hoist-all is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this packa...
Malicious code in workspace-hoist-all (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9e591793f57ce0827e5e1fe1fa294727de96ea3ef4263ed9171550a534d6be47 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...