225917 matches found
Malicious code in @opengov/qa-record-types-api (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0be39ed161d642824f2ce1f8511e03759918909ba0218265174294129a172d01 The package @opengov/qa-record-types-api was found to contain malicious code. Source: google-open-source-security...
Malicious code in @opengov/form-renderer (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f6c8cb05cb54fe0f2f81f0c9a5ff43f2c4a45ab0fa31bcc1d1cade080e731c3d The package @opengov/form-renderer was found to contain malicious code. Source: ghsa-malware...
Malicious code in @sixcore/baileys (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1286e85f8b045ceb430500873b6a172bc5bef2193da8d53ec25183e7a4984cd8 The package @sixcore/baileys was found to contain malicious code. Source: ghsa-malware 4d631c0d901cd4ee9e33f1b24f2a7e067cb4369c7813ce8d46e7e7f0e2217a...
Malicious code in super-alias (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 10ee12ec5ce74c0899ed60e17d1baf7095efc7ab305e51d4fcf20db72306621f The package super-alias was found to contain malicious code. Source: ghsa-malware 2c8c29e0ebca0170c77383154e5c6f2fe5280412fea18d255b496b94ae0aac5f An...
Malicious code in changelog-utils-wrapper (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bec9a644e6b7c6be0e1e95ad8690cf8c19568061865f8e185552431e09fbb38c The package changelog-utils-wrapper was found to contain malicious code. Source: ghsa-malware...
Malicious code in simple-util-kit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c4e97df136a9f8721793e4556b53f908cb10a6df1b2febf5edd3d9d8ef7ab2c7 The package simple-util-kit was found to contain malicious code. Source: ghsa-malware ade2d906419f8d8a97dff43ed8530e27612faa88503c6696838b30f201d5e6c...
Malicious code in globally (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 1f2d16dd9f9dc8f8c54504946e96b931fab9f6c893012e17b0c03dd531c49f5b Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in aristanetworks (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 734e78214abbde694d6041663ec7e34bb9f31c9265856540de7a1c0a8ffe5e33 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in python-glue (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 df7fb99f81d8afd1a93e643a95ebb6d2a873e73b15ae8c6fada22746ccf7037f Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in @shennmine/libsignal-node (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 04f4d27219071c7adbcedd56c54f0ca559b3d3651e6203b38d5170bb0e239f66 The package @shennmine/libsignal-node was found to contain malicious code. Source: ghsa-malware...
Malicious code in @rexxtheproject/elaina-baileys (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 35f9ef0d26d553f66ecfe3fb2813906a4a457ec3918fb5c0508441f3e13d3fa4 The package @rexxtheproject/elaina-baileys was found to contain malicious code. Source: ghsa-malware...
Malicious code in @eric-orderbuddyinfo/react-noval (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ae5f280b7537acc7eb9e1d8c12acdd2142bb02e391be55b2157ed90eb2044d06 The package @eric-orderbuddyinfo/react-noval was found to contain malicious code. Source: ghsa-malware...
Malicious code in svg-sizer-responsive (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a60820b0fbec756691b147e45ad8157501c307c7864249a6a7b112b5293846e The package svg-sizer-responsive was found to contain malicious code. Source: ghsa-malware...
Malicious code in tailwind-animationbasis (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 613bfa904c0195c7d59209123554b2be83ed4a0568c174e8b221e22725fec103 The package tailwind-animationbasis was found to contain malicious code. Source: ghsa-malware...
Malicious code in ssh-common (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d42bf2b2b77d94173694ed6e952fc5efb2d0de3b04f237f15ffa9470809a321e The package ssh-common was found to contain malicious code...
Malicious code in phantom-module (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 679c2a8141e65585d4f03cd60fc7ae30d9c6f7ee8cbc3a0858860220efdfb08d The package phantom-module was found to contain malicious code...
Malicious code in nf-console (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8ba9583e189e78f6548f1b112ee725ed98a767db49b567918e534e4384e30ae7 The package nf-console was found to contain malicious code...
Malicious code in ectoplast-spirit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector efb7edb34ad0e4e3740692b2f80f2ec2085ad2557e947920c3acdd71626a8b99 The package ectoplast-spirit was found to contain malicious code...
Malicious code in ecto-corsair-lwirz (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 77c3cc1d671c5749806f3787e8d2005f67db4d64f938987e404cea0a52ebac21 The package ecto-corsair-lwirz was found to contain malicious code...
Malicious code in deriv_ppetest (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 61958a4979f72a02b66fa1076fda768ab5e13ecb3f565e75e3c2fdce8ae7f4e3 The package derivppetest was found to contain malicious code...
Malicious code in ctf-package-onetimeuseforctf (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2d37390fd81ab77282de711d615673122fd18763d31c720135595e40dd32a71b The package ctf-package-onetimeuseforctf was found to contain malicious code...
Malicious code in chai-chain-argon (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 843de6d2665a1833194793cfe05d91e35574e922fbb24cc0879c32352189a29c The package chai-chain-argon was found to contain malicious code...
Malicious code in chai-as-attached (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f3334b8d2a1f3861b1427af8ae49ac714b72ab19d6a571835e6c84c5d4b83b1a The package chai-as-attached was found to contain malicious code...
Malicious code in @pansycareful/github-helper (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9b0fd8e716dd8a1f3d3d8e33d9dfec9cee22ca3b511d7ac05fb3b175da1d1842 The package @pansycareful/github-helper was found to contain malicious code...
Malicious code in @fyxer-ai/shared (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1c3a41d542ea1950a8f7bee29e8c4602a2553a5b612c7763af1f7a80246f708f The package @fyxer-ai/shared was found to contain malicious code...
Malicious code in agoda-dep-confusion (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector faa0bc71a76133f8ba2469aab72a42ed605c22eaf6a3816754f5dff2cb21fa87 The package agoda-dep-confusion was found to contain malicious code. Source: ghsa-malware...
Malicious code in litellm (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: google-open-source-security 6a89401cbf53902e8374fbf3b424a77bb5e5f8c437176232eab7c3237d10ecbe LiteLLM was compromised through trivy security scan in a GitHub workflow. Attackers uploaded malicious versions of LiteLLM to PyPI. The...
Malicious code in customerdigital-ui-components-lib (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 70a8c957edf16da956a7859c7a0e1d8accbe84824b88f1f19f70a01acd07b729 The package customerdigital-ui-components-lib was found to contain malicious code. Source: ghsa-malware...
Malicious code in oc-ccp-module-client (npm)
Malware due to hex obfuscation, suspicious install script, dynamic module loading, OS command access, process object access, and untrustworthy project. --- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b2b4b9cee1369c441aa8d759bc04085a8e2b14786df20656a8c6bc249e6260...
Malicious code in tailwind-font-inter (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b2cb39a969b06dada95f847c6d5fc21fd0cb38a37c6b38a6b60ef1ca439f2147 The package tailwind-font-inter was found to contain malicious code. Source: ghsa-malware...
Malicious code in sidebar-basket (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware abd1b121a57bf0b4d96e4f902f6d051ff5b485ab7fc412f8940ce2c294ddb660 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in sfx-event-bridge (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2ed3495e868bcd1db85182332d575437978593cda12ceca6ab4acf1c4b28accf Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in pulse-feature-flag (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fad1549c9f60719931f740e56bfa68762b93275b97574f4d8d2c08aeedc71344 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in sd-basket-highlight (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1eb99aa8736f7070c6e86b764bff3d6a3297cb10df44fa32ee65d1d7c3a74754 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ty-fragment-core (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 88bca7665eab3ba9300549f837880aea1567494c90187abacee03c85eaeb99e2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ty-config-provider (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6fdfad9d372aeb95a258e5f5c732b57d1d226d7101ccf09a33cd3eb93ab45d59 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @emilgroup/gdv-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83031adc69b499c90ed508899240f54c5111168ed567a9730efee14b8497aefd The package @emilgroup/gdv-sdk was found to contain malicious code. Source: ghsa-malware...
Malicious code in @emilgroup/partner-portal-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e6d39860559ec42dbfe2c1b124d8354e3fc7985ea21f2c1a7ae35f874875726 The package @emilgroup/partner-portal-sdk was found to contain malicious code. Source: ghsa-malware...
Malicious code in @emilgroup/claim-sdk-node (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e875cfffc40fe2f586c2016b175709687e5644132193d058580c55b789f64482 The package @emilgroup/claim-sdk-node was found to contain malicious code. Source: ghsa-malware...
Malicious code in aiolrucache (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 8b847ab6789b3a3848d887f76adae74d05523dd4cb1a974372518679d27ed70e The package masquerades as a utility, but during import, code loads obfuscated modules with RAT- and spyware-like functionality, including: exfiltrating files,...
Malicious code in yelp-react-component-badge (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector abec06c903f4139ed298b19b96521401231e6bd0cc306e5e7015d971d5a4260a The package yelp-react-component-badge was found to contain malicious code. Source: ghsa-malware...
Malicious code in repo-typescript-config (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c009aa720ff70075b05dfa732a4d21fb40241c526d6615825dea97202843b252 The package repo-typescript-config was found to contain malicious code. Source: ghsa-malware...
Malicious code in mangrove-sdk (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 d6714958f20775c2347e9c8b606d1de2e28ed29fe4b1a82261ca4fb966fc20fa During installation, package attempts to modify LLM configuration files to provide a backdoor instruction for further control over an AI agent. --- Category:...
Malicious code in tui-ascii-art (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 4358458e150317ab394c6dd2d0137a8c395a32bae309cc1bfd829f123dab1393 These packages are used as build dependencies of malicious packages in newer waves of the campaign 2026-02-urllib-slim. They are used to split the malicious...
Malicious code in delphoi (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 72f68bb459a4772a75900ddec7e0a918b514f2211a2303aa80ef82252078e3b6 The package delphoi was found to contain malicious code. Source: ossf-package-analysis c15c8182b6e392861478887a08b04eb8fecc38b70000313dfaf1cad8ac8bc8...
Malicious code in puzzle-gateway (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f27caad6b59388e38056a6d8624f8f7b19441cee52bd007d0e1b3678e36dd240 The package puzzle-gateway was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in ty-web-session (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 15f6d0a640d7d4323f1ef52969a6a259b9b6e3bacc2bf65f514cd618a00945a9 The package ty-web-session was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in airio (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 d6edae69303a2c992df68a1743104255c7de6aa8beba5f7b37eb9b91707789d9 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in pubsub2inbox (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 bf686448f618fa764676453e2c0b7436f7c50c2043cc2734d2fcc142fb86f951 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in xyztttxyz (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0ec60812ab8ac06f92ad0543c7a16f930da49afbc1ca5e10e6cabffe3ffe1ddb The package xyztttxyz was found to contain malicious code. Source: ghsa-malware c7299da569fb2428ffb4bcb1641a07a7879e89460f46405e2257197a6f4fe2a3 Any...