225914 matches found
Malicious code in elf-stats-nutmeg-stocking-515 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 069153a5e830a9235275aed41ef8bebe00239d484b8db5a11b10df1e4e50db24 The package elf-stats-nutmeg-stocking-515 was found to contain malicious code...
Malicious code in elf-stats-snowy-candy-850 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 270c6ea36a31bf1f48f6d591f72e5ae861e3aa51fa9256ec8aa81bf01be09fd6 The package elf-stats-snowy-candy-850 was found to contain malicious code...
Malicious code in elf-stats-marzipan-muffin-733 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a970a8f58faecd87e4fa9558b2888dde387b0a8ee5591fb2ae516dc3f02c7e38 The package elf-stats-marzipan-muffin-733 was found to contain malicious code. Source: ghsa-malware...
Malicious code in elf-stats-sugarplum-workshop-950 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d817f3dc92408c5a4b49db8e6edfd5498963f20da41310f4a0fe1fcb0d350c32 The package elf-stats-sugarplum-workshop-950 was found to contain malicious code...
Malicious code in buffer-envjs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 328f0f326f30ba6e46eee18a532f81cdd6afdbd656e79c16ec2158af7f924c8f The package buffer-envjs was found to contain malicious code. Source: ghsa-malware 7dc4f4a51201db42dd81059708300e05eabba51b1ab48793c8f37d582fd24d93 A...
Malicious code in elf-stats-cranberry-sleigh-853 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f85ae12d2f730c46ea2549c98a491f8ccccf2c8f7a484258398ce7dad89c137c The package elf-stats-cranberry-sleigh-853 was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in hellospa (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 276fd70d8b56465c07e6a06281b93ef014fcab93ce00be738e645501713dbdda Package exfiltrates credentials, env variables and other sensitive data on running. Notably, exfiltrated cloud credentials were immediately checked from a remo...
Malicious code in karemm3 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1bd722766b62cd6170d4f383859a06e6a2a680b4a27dfad18580d867812e57c0 The package karemm3 was found to contain malicious code. Source: ossf-package-analysis f604c8fe5fbfae97b812b063b2707f681c1499484e959e7229a06227b1607b...
Malicious code in elf-stats-snowdusted-wishlist-166 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f858ccc2f57528938a75b4329df0f7046904e9aa3de54bd2a6b972d7bb28ce2 The package elf-stats-snowdusted-wishlist-166 was found to contain malicious code...
Malicious code in karem4 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5a1d3bd676881934532a2e75fd644e22b2e4f26fb08bde6d48ff6d529de7467d The package karem4 was found to contain malicious code. Source: ossf-package-analysis b843a0d849da7453ce803b77a117a501a3b1e4b04eae8222d3b59d48438931c...
Malicious code in karem1 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 327a275e4c0f14aa43026b91f5ed1968c2496f55319c813cefb5204c6208d09b The package karem1 was found to contain malicious code. Source: ossf-package-analysis b157559068e5498ca43d118d45ecfebd0c4505ec13787457c162501ab707645...
Malicious code in wfui-dbd-react-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a49a931af71a32dfa7644c29cca564d41bd857fa8cdea4956e0764cd224834ad The package wfui-dbd-react-ui was found to contain malicious code. Source: ghsa-malware...
Malicious code in wfui-dsm-react-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ab7eb463079033f35833ad6226f3db96e8b3e17ed382e0868d2ad823af5bb34 The package wfui-dsm-react-ui was found to contain malicious code. Source: ghsa-malware...
Malicious code in internallib_v881 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 88a05ce6f3ec9a36ea97ed0f3c3b1ad47d759be64104c2b2520d695f5da2c8d8 The package internallibv881 was found to contain malicious code. Source: ghsa-malware bd5f984f8edb8d28061ac400a32ca61e7ce24ab864d705ed39b96e2d69b405b...
Malicious code in markdownlint-cli2-action (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 655d6053e439a95c848bd57cd41cba21de94f230903346b885b527082e131915 The package markdownlint-cli2-action was found to contain malicious code...
Malicious code in dataset-view (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 92f4e8552a727b5aac457a7d16a99d4e0b3a99342044aee673aba036abbcd9e0 The package dataset-view was found to contain malicious code...
Malicious code in privy-frames-v2-demo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 50804c5abc715a96e6683f67c970ed8e06d949cce42d57ac7d8754c9633ad685 The package privy-frames-v2-demo was found to contain malicious code...
Malicious code in solana-dev-mcp (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c145bf7c5a5338ce094da7306d81c107eb218975e136423df4b1e3f71207b755 The package solana-dev-mcp was found to contain malicious code...
Malicious code in pluxee-design-system (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 701f52cd229baaf8a44c372915a6bdbcc5510c156fb75c21d23c932d51ccde2f The package pluxee-design-system was found to contain malicious code. Source: ghsa-malware...
Malicious code in hl-naduccio (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f7193ea32e3d2686d1c8a3d6a7f78a78a41f3d8cf1441595f7a323029b4b9ac7 The package hl-naduccio was found to contain malicious code. Source: ghsa-malware cbf2d782795965491bb5f2dbaa4d5cf378b7ccfd4b370b90cb7059b01b2685ab An...
Malicious code in vite-dynamic-chunks (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6babb911a34c3564bc3482994130fa36a5b088b1132550960a97582c74ed11f8 The package vite-dynamic-chunks was found to contain malicious code...
Malicious code in react-mandes (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8242aeb2b6b10985e7b4c0a35cb731d81095b7f039aea2886d0c4c35ffa5d9ea The package react-mandes was found to contain malicious code...
Malicious code in aps-simple-viewer-nodejs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1a3d18d7c64f1636f4922e13d1cc9768c1516be07e755001ed729faff0a63c29 The package aps-simple-viewer-nodejs was found to contain malicious code...
Malicious code in bybitapi.net (NuGet)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in chain-selectors (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9fb7c7965dde4649d4adda7307f395134f22ed654c9a20b2c7dc9ea1b0c1dad9 The package chain-selectors was found to contain malicious code. Source: ghsa-malware 5632dc92ff1221e72c077781c43c1482a1a40fd5c703f95dd209890a4aa7941...
Malicious code in logguru (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 64b91d48504c05711a759a1cb2a0bfd63650f47d05d04296bbea6269ed4229b4 Malicious clone of a legitimate "loguru" package. There is added code to download and run an executable. Sandbox analysis reveals attempts to steal browsers da...
Malicious code in browser-client-neptune (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b9ad0cf7ca8faf91e654dc6ceb89ca235f191edc099334e5d8cf1a070bfb128a The package browser-client-neptune was found to contain malicious code. Source: ghsa-malware...
Malicious code in discord-selfsbotsx (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 b56aa48c0654abd06a9d624b8c1b5ab4ce170399068d97b994bb4d63635bf18a Once run, package downloads and installs an infostealer --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign:...
Malicious code in threading-helper (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 74a87b74245d0639ace987a197363e4396c334434721b81ce7d1c4d7010edb55 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in gptall (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 e68d6c72f5a98f22bc22ef0ad7aef178f253ba95ebac54ba881f95762d4805f4 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in br2s-ui-componentlibrary_r2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector be6786b979a9a6378e096381748fc3546c761e95cf2631585010ca066ad5ef19 The package br2s-ui-componentlibraryr2 was found to contain malicious code. Source: ghsa-malware...
Malicious code in atlassian-exp (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 802483ac3ec3749092037040a0a50ed9fa329232a832ac15fd5a0c692c42a9fd Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in vite-dynachunk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0a15f2c558d50bf310cbbe09daac2730fcfe1f196c0f0a2184d5adc74d0ec749 The package vite-dynachunk was found to contain malicious code. Source: ghsa-malware 9402a1a80c09793a69e3dc45fab9bf9fb963616e70b8e50d3f46bd65a678c8b4...
Malicious code in mcp-polymarket (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c93eadc60da9cb188762b7190a7c6b48a5eaa9766f23d7515b944c05eb3f005 The package mcp-polymarket was found to contain malicious code. Source: ghsa-malware 41eb8c2fd8bee675d7893ba16ddd2f6fd03730818520e928c0320ed2a0306602...
Malicious code in mayhem-wma (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d242ed0467287371909e2fef415c86d7688c77b9a33f6b43c52d37bfc2d7fa6e The package mayhem-wma was found to contain malicious code. Source: ghsa-malware 9f00d5cfad9006d0cb83e7249554304291a746a42a2191314e1b70990e854df5 Any...
Malicious code in react-svgs-helper (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 081ba740ebfdae5dfc4f53bf53b7658227f6fc78a9c8866727d95d2467991f3e The package react-svgs-helper was found to contain malicious code. Source: ghsa-malware...
Malicious code in baidu-src-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7b70672e328a6c37f9f5a2f333c52648043af35a44d4a7c33fce30d4dde10869 The package baidu-src-test was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in @huntersofbook/i18n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ca8379240118a39aaed6773c2c07b3212816dcaa38318220594f99d6d31c3f5 The package @huntersofbook/i18n was found to contain malicious code. Source: google-open-source-security...
Malicious code in @oku-ui/dialog (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 25f15df16cf4e34ba65ddc24116d624b40ec91b0a9d12bacec8f2afd6ea3bc27 The package @oku-ui/dialog was found to contain malicious code. Source: google-open-source-security...
Malicious code in @oku-ui/dismissable-layer (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8e3f3fce07b25fef3b52f9f9cccfdaa44fd55e8721c6d7c287e1fbd9379359f0 The package @oku-ui/dismissable-layer was found to contain malicious code. Source: google-open-source-security...
Malicious code in @voiceflow/dtos-interact (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector da307584309abbc16bc106ef1077c1719a9496cf4d3fac9cd2843fd76e77f8d6 The package @voiceflow/dtos-interact was found to contain malicious code. Source: ghsa-malware...
Malicious code in @voiceflow/voiceflow-types (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64870c57f06fc059636a3136cce3f775121952fa37459d740810067378d88c0e The package @voiceflow/voiceflow-types was found to contain malicious code. Source: ghsa-malware...
Malicious code in gatsby-plugin-antd (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1db5c29950300909f2a9571826a482e10a6ce45dae9529f28ad87ddc2b98119b The package gatsby-plugin-antd was found to contain malicious code. Source: ghsa-malware...
Malicious code in @voiceflow/widget (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ac19bf504aadbfdca19efac5f7d258c14c541a1f9747324e00da8220b0b1d785 The package @voiceflow/widget was found to contain malicious code. Source: google-open-source-security...
Malicious code in @dev-blinq/ai-qa-logic (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6bcfefccc1ff9a7579321c6e45d16fc6aa94b9eaa45952fe47d415c2ffcde9a4 The package @dev-blinq/ai-qa-logic was found to contain malicious code. Source: ghsa-malware...
Malicious code in @dev-blinq/ui-systems (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9ce530512b608913637db50ce0058d08d5afb8173c8b5968023c9b9665bcde49 The package @dev-blinq/ui-systems was found to contain malicious code. Source: ghsa-malware...
Malicious code in @alexadark/amadeus-api (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 77dd4490e1bb80e5b23c2e2181146133e356e9a42967ae02883630c49378fb26 The package @alexadark/amadeus-api was found to contain malicious code. Source: ghsa-malware...
Malicious code in @browserbasehq/director-ai (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b86bd8a3bb8b027a0b305fca0e5616b1f8cfee1229e47609ef43a14edb2ad0c6 The package @browserbasehq/director-ai was found to contain malicious code. Source: ghsa-malware...
Malicious code in @browserbasehq/bb9 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc1cd2b73fffb169a779067cb1753b525b3f8112141a253d64a4fb91cb0d4742 The package @browserbasehq/bb9 was found to contain malicious code. Source: ghsa-malware...
Malicious code in @kvytech/habbit-e2e-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 99bc98f56e53ded216f20185150816d9ee319d2e9570684bb920a024c92fae93 The package @kvytech/habbit-e2e-test was found to contain malicious code. Source: ghsa-malware...