225914 matches found
Malicious code in @emilgroup/commission-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 88cda98ba417752b6bf4aef7eb0ecf7410017226165423202ca4d5886f370478 The package @emilgroup/commission-sdk was found to contain malicious code. Source: google-open-source-security...
Malicious code in @emilgroup/process-manager-sdk-node (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bc09d1561452ec50af226b10199a75b846e64e16ccbd9ff7757bf0e4a769d0c2 The package @emilgroup/process-manager-sdk-node was found to contain malicious code. Source: google-open-source-security...
Malicious code in react-autolink-text (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 402f7d8c6db956de1c20cce1c23b9d2585a9210f6aae7859acb956fb66728010 The package react-autolink-text was found to contain malicious code. Source: google-open-source-security...
Malicious code in @opengov/form-builder (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 19bbc2729962e719c0df5dd96e17dd7ceb90a0a5506ebb318cc50c19b6fe8bb8 The package @opengov/form-builder was found to contain malicious code. Source: google-open-source-security...
Malicious code in react-leaflet-marker-layer (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7b37a04b363c4392e401d85320c748dab98c13ff46c74624f21aaa70091b8ae6 The package react-leaflet-marker-layer was found to contain malicious code. Source: google-open-source-security...
Malicious code in omaronsec (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7ff0bfae46cd199f9de68fa7a40d0f579cd8918783db054a2eb83c8cf047424f The package omaronsec was found to contain malicious code. Source: ghsa-malware 67e67c70590c02b44ced517d12ded441ebcd7e80617a6818d06ad836620910f6 Any...
Malicious code in omicnavigatorwebapp (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 327bf8baa88f730faf7a3b96a6acc527533ef6b39c5274246cfc00c72d6c30d2 The package omicnavigatorwebapp was found to contain malicious code. Source: ghsa-malware...
Malicious code in hy-api-utilities (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 e47cae7d998d465d8ad1e4944051a42ee3cbf939476004154800628a94b828f3 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in facebookresearch (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 b2532cd269873dbda78f99b9e22ab736c64c48ba32fa5c27deaf173fdbf33397 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in fairness-bias (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 c76439565a70fd014098388baf5dd9a679f90be992102ba689fc0b7d6d3db352 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in v2-8-3 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 b90faec9a57b74163b9282007ed27f9602abf0d5307115928eb4ca75d98f8c72 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in sonic-config-engine (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 2385b46fee4fb7241c2f3f692934017f39660c9694b98b92cbe3dae6555e5b05 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in sonic-platform-common (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 0b7ad70e46087b1ffe41c3d0670c24c58b38e72344c958458af49a25541778b4 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in @eric-orderbuddyinfo/react-noval (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ae5f280b7537acc7eb9e1d8c12acdd2142bb02e391be55b2157ed90eb2044d06 The package @eric-orderbuddyinfo/react-noval was found to contain malicious code. Source: ghsa-malware...
Malicious code in chai-as-emitted (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 228c6ab5c9a65c0aab7c5cceb3a4afd4a2fed586a17c3bb60600ee1bfffac694 The package chai-as-emitted was found to contain malicious code. Source: ghsa-malware f4fa2cfeecbdb9b86b3d4acf6c746b8aa0e8d290d63caaa166f792cb459783c...
Malicious code in @xvortexsockets/baileys (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6fe781d4e79519992d2b0f37577515da41d7e0deb2f9f32df7c39dfb8de3916 The package @xvortexsockets/baileys was found to contain malicious code. Source: ghsa-malware...
Malicious code in mattermost-airflow (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 667be9d0c5eaea7acdf1c2593165304280ef7b67bfbf4d8c0f36065836fe834c Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in databricks-clean-room-orchestrator (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 fbc98178bc405d7a11a93726ed2eb1919477f5fad01b06272d90615c87755663 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in compose-rl (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 d7bb3250324aea46c0121883650a393aeee3569ba3a3a8f202530bdc523a5735 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in tap-wordpress (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 53e2ce83230d861f844469c970eee52f778a63852ef04de9007e9bb8f883256e Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in roboat-util (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 869ea4b94181bc5ef23562a4d749b462fb7079112cca74072ee9036fb397921f During installation, a malicious executable is downloaded and run. --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...
Malicious code in coreloader (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 f5d7c219be7c779fe573e80949a521df2a096e7358be92f99cee6a50dd252e09 During importing, code starts a malicious script performing exfiltration of sensitive data and credentials from e.g. browsers and Discord clients to a remote...
Malicious code in stats-helpers (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 0325e0cf1dadfad7387e0814c62942c6d4d80373ce116234fcf4f5450d434570 During importing, the package exfiltrates sensitive crypt-related environment variables to a remote location --- Category: MALICIOUS - The campaign has clearly...
Malicious code in open-vp-cal (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 ab8c06b5d7e9b98d62708ab7377d9e18a214e884c69b0c7217979121aed06917 When executing the module, the code installs a package from a remote location. The remote package contains malicious code exfiltrating selected env variables a...
Malicious code in uuidvalidatorarabis (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 980bd443f5ff6b9b9a38a084ed533ef47f42bf5867df5d6281df19515171a6a9 The package uuidvalidatorarabis was found to contain malicious code...
Malicious code in this-is-my-test-package (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d72a917ddcec635fc210d8767a9c289b6d43128c589de76fe7c0548da33878d2 The package this-is-my-test-package was found to contain malicious code...
Malicious code in onb-enrichment (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8ce0c5fb4cfe81321cd7c89306b2049a57e60bffd84f128d9f72f11aaa4d0223 The package onb-enrichment was found to contain malicious code...
Malicious code in nodecognivault (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7709482c6e8d04dee2a9310780eff8f0f31cb64800273088f08a5cd1a8570c0a The package nodecognivault was found to contain malicious code...
Malicious code in node-neurograde (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 87deda0e4e9f843c759c9e8f0b41cfdf3a1f9451f1a53ccaf2a32c092a706180 The package node-neurograde was found to contain malicious code...
Malicious code in nf-console (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8ba9583e189e78f6548f1b112ee725ed98a767db49b567918e534e4384e30ae7 The package nf-console was found to contain malicious code...
Malicious code in merchant-rps (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d3e16d7a1d2277acd9102268accb99bf0054cf39ee5141d0380f920fedcc8e59 The package merchant-rps was found to contain malicious code...
Malicious code in json-mapping-fetch (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45649188d792a4c0d12add7ece8a5f8bd1f35ea2478d963b75238249cc788de3 The package json-mapping-fetch was found to contain malicious code...
Malicious code in ghost-module (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 67b6330e4cf0d3fdd5e5809026b2bf763eb9e40677d38cca3a39af3a079d265f The package ghost-module was found to contain malicious code...
Malicious code in env-expanded (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d3b59507cce21e48b0df323a7a5cedf303427c72c2118fdc15702c813174cfa8 The package env-expanded was found to contain malicious code...
Malicious code in env-embed (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fb6e9ae149bf8b69194b4ae8fea78a4f31cbd1c01a9f65a188c063380b5c1d34 The package env-embed was found to contain malicious code...
Malicious code in env-cli-express (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 46e9b2427571d9edd96dfaefcc677578a0296dcf49d197e9482a67b794ea440e The package env-cli-express was found to contain malicious code...
Malicious code in ecto-spirit-core (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 72d3638a38fd250b18d9b93068dc16f07d03d34e87c361a41069ac57740f2629 The package ecto-spirit-core was found to contain malicious code...
Malicious code in ecto-spirit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 47b836667ecfcf9ebf94ca27412a66b50088c2e6dcfffde861a901c2c3fd5678 The package ecto-spirit was found to contain malicious code...
Malicious code in cursed-module (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8f33e4c756bc2b6484a9c8ddc7510e2b7e3dfee1ba963a77d610e61c2c897821 The package cursed-module was found to contain malicious code...
Malicious code in chai-set (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 28dfa5b2cccd6b50e33c5fbb98357210b6eeac23c9764183693b3eb74da40f44 The package chai-set was found to contain malicious code...
Malicious code in argon-node (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e3639b8833add6b5673b5f647479520157a22229369754ef98675e97a4a56385 The package argon-node was found to contain malicious code...
Malicious code in @girirajravichandran/corp-build-utils-poc (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 82e79f342b1cd33520c8987b0307cb211e4b04694caef9c967725778e1802e94 The package @girirajravichandran/corp-build-utils-poc was found to contain malicious code...
Malicious code in rocketpill (PyPI)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in @one-site/europcar (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 711bd5a2f6cb47f1cf20cae950c1b89253561e63249de1fa2989ea5766f6f3bd The package @one-site/europcar was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in agoda-test-poc (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 61298c02c98b568b7b2735848ed2087ced94165a58e6602af9769d359b279056 The package agoda-test-poc was found to contain malicious code. Source: ghsa-malware f1dc100458bb8a2a4c1831d2a680b7895085adc4bb5fa5c90701f52b1165eb8d...
Malicious code in yelp-react-component-photo-upload (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 32e7f0c90df117fd4748129db7ebb37ee6519a0f8ace68bbd197b8f6658da7ee The package yelp-react-component-photo-upload was found to contain malicious code. Source: ghsa-malware...
Malicious code in oc-navbar-module-client (npm)
Malicious package due to code obfuscation, dynamic code execution, suspicious email, install script, and low project popularity. --- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ec0eedd88f7d05d96544d4fc778561471c0490c16f2fe2c6e8c70428af92e6ad The package...
Malicious code in @cloudsop/hmoment (npm)
Malicious package due to suspicious install script attempting to require the current directory and low project popularity. --- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ad95ef51ef99f49ca08b99a81d6a18ecb75dafb1dad2afc2bca687f221ef95dc The package...
Malicious code in logutilkit (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 25a26f2dc6e0a8e2ba3bd43492fbffa597b39065e3f3378ea976dcabddf8fbf8 Malicious clone of a legitimate package. When using it, the code attempts to download and execute remote code. In on of the incarnations, the malicious code wa...
Malicious code in pyregions-snowflake (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 4c3a6759d779c0fe3ffac5559aa5f8915f72cab6bce545e1fe261f3caab47a65 During installation, the package starts obfuscated code that downloads and runs remote executables in specific environments - in older packages - attempts to...