Malicious code in seanp-test-package-do-not-use2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 99e839ce8a19ba7b81bda65289233cd34aa7bc4daba6d742f102288bbc5e514d The package seanp-test-package-do-not-use2 was found to contain malicious code. Source: ghsa-malware...

Malicious code in smartspacestoreapp (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 131fda466c1132087962cfaaecf0a2f836548024dd31f9f0982764d87534c931 The package smartspacestoreapp was found to contain malicious code. Source: ghsa-malware...

Malicious code in upgrade-mobile (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 50fddf8ed26118557ffdca771219746de0194477c83724370ef30b18d858b1d0 The package upgrade-mobile was found to contain malicious code. Source: ghsa-malware a26e290558ffe604a105aa63eb83a2f6aae1e8656e947908c9d29c3c3b7632db...

Malicious code in wikibuy-mobile-analytics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e240a0c7b0f1e6f0ce72c097409a543c14de0b3231f000ef7d37c8d61b0e1ad8 The package wikibuy-mobile-analytics was found to contain malicious code. Source: ghsa-malware...

Malicious code in react-native-kyc (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3d1ae391e8ec2bcc50f5d507ae3566a122058f2d3aa4227b5abf64ecc43990a The package react-native-kyc was found to contain malicious code. Source: ghsa-malware b07a2ced47f073e338b59c9aed3d551f9e8acbbe7c1e02102b7a9c8fb37250...

Malicious code in open-telemetry-mini-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 81ad802a8e687f98fad0939faad9c0b5d2031689d0326e21e70785eade52bf15 The package open-telemetry-mini-client was found to contain malicious code. Source: ghsa-malware...

Malicious code in wikibuy-mobile (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 95afdd748611bc8b6c2cd619ad873d1ff6d1928786e10d4429487e819c9f8af1 The package wikibuy-mobile was found to contain malicious code. Source: ghsa-malware 0040ed4ba77f055d03cc31ab35b4079ff949423ed02d430037158aed38edfb02...

Malicious code in cp_amm (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6e71dacd7a89bbff73298cd870eab40b71d5fdf8a2ffbec74c772cbc4e6f1026 The package cpamm was found to contain malicious code. Source: ghsa-malware c2bf6dfc9b717408c1e17976ef3ecb5193dd73340f2d3a60f85d114b24c81c4e Any...

Malicious code in chai-as-required (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d4e11cf62bfc3ebf38053f2a9100239db0bc6e3069a4cd202f4469c5095cacf The package chai-as-required was found to contain malicious code. Source: ghsa-malware 6fc3ec9f20ee6a20fa8c22b25629b78558ca88fca81f4b25f414ad2eb13dcb...

Malicious code in redis-request-parser (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c98c3985913e00b5e728a27ab47c68589ba0e478f576fa6ed9aed1c42d229972 The package redis-request-parser was found to contain malicious code. Source: ghsa-malware...

Malicious code in @shop-cicd/webpack-package-artifact (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ee6154f54d35f10e1bca4b64111deef6ab6c43c9ea291a7adfac091b7334ab0 The package @shop-cicd/webpack-package-artifact was found to contain malicious code. Source: ghsa-malware...

Malicious code in n8n-nodes-performance-metrics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector decf8fbf4cfd483a5fc72a3c3037f88de636f0732e3d591a09309e54faceff05 The package n8n-nodes-performance-metrics was found to contain malicious code. Source: ghsa-malware...

Malicious code in n8n-performance-metrics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ff33e7eec92ad0ad734fb7babcf427a9a5df69ba94b95c904c1ecfce32d5ef97 The package n8n-performance-metrics was found to contain malicious code. Source: ghsa-malware...

Malicious code in eslint-supertest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 06b784b251ddb3666b203fa36b7e7cd4e9101ff8c468c9d32423a398f40a6689 The package eslint-supertest was found to contain malicious code. Source: ghsa-malware 01ffd1e84f1255f84c7876957e188eed9ab1dad03915006b9f463510c22590...

Malicious code in redis-cookie-js (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c702113d5f2bf54eeb40b14947991242428d0d3fe07c09560ea2c10d953975f The package redis-cookie-js was found to contain malicious code. Source: ghsa-malware b7f1f65a70f0f5ed9257e64aa9d820766513adeb5a13fc8ac7ae11b9cf58d57...

Malicious code in redis-cookie-parser (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 91375f4f82c5d4299e69cf91489e82b06358bccaa40ec51ab1c19c3e03e3e99a The package redis-cookie-parser was found to contain malicious code. Source: ghsa-malware...

Malicious code in oj-sp-common-util (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b8c112d75458c1c8c9af95739b5a983b3617fbb578a147933a3d4cab77360dc4 The package oj-sp-common-util was found to contain malicious code. Source: ghsa-malware...

Malicious code in oj-sp-css-additions (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 76f44dd1651a643e28e082a676732a19e8a8a8fcf5b2f88264aa47c7f5e31dce The package oj-sp-css-additions was found to contain malicious code. Source: ghsa-malware...

Malicious code in oj-sp-messages-banner (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2997bc3258b7333abbb7c3aa047917498aee227c667e865c51102062bc82916e The package oj-sp-messages-banner was found to contain malicious code. Source: ghsa-malware...

Malicious code in oj-sp-about-page (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 88af67380622acfe95b416c0349a87adf700798459b1b7794578e38d057a2bf6 The package oj-sp-about-page was found to contain malicious code. Source: ghsa-malware 4bece5a0063e69e6b490afd2ca5d92fce9ce26e5c729f5f550f9acca50eb10...

Malicious code in oj-sp-common-strings (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f5466d410ace77d36cbf4ad77f4ff2bec3030d7b19266a78de448ef1517b2679 The package oj-sp-common-strings was found to contain malicious code. Source: ghsa-malware...

Malicious code in oj-sp-common (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4192506d43fafb67a79ea826406a174aa2d05bfc74c3df203366e1ec7cdce0af The package oj-sp-common was found to contain malicious code. Source: ghsa-malware 0321cb6ed931a42d70b5f2e4cf235b07bd7ce205d6781729c28cfe5475a1ad9b A...

Malicious code in hello-world-npm-demo-example (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1b3d59e455a083fe1d90b99dc29e2b1d207b769331e331fd1e01a28e2a1e7060 The package hello-world-npm-demo-example was found to contain malicious code. Source: ghsa-malware...

Malicious code in auto-backup-linux (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 e6f1fce241db64e9804a2eee083721b8374a2f27d8f4f2c51ce77a8e7687c61e Package performs a "backup" of files to a remote location. This functionality is clearly described, but the user has no control over the remote location where...

Malicious code in auto-backup-macos (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 64b97d3c3597539dc5a2cc2d81491eb2a0350011b3d80ef927546bc30701f924 Package performs a "backup" of files to a remote location. This functionality is clearly described, but the user has no control over the remote location where...

Malicious code in auto-backup-wsl (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 a2df4191bfbdaa28acd42677c912064639ef3b278179beee064cd83fb5b0e11e Package performs a "backup" of files to a remote location. This functionality is clearly described, but the user has no control over the remote location where...

Malicious code in auto-backup-wins (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 c75087101c3ef272d35e87c1e17c5455e788fec5b5aabb6a61c42362a180b30e Package performs a "backup" of files to a remote location. This functionality is clearly described, but the user has no control over the remote location where...

Malicious code in react-transition-group-legacy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 766e17e75d1b6492251c7c647d0783879b9fb18f0793046fc985e40a46295d63 The package react-transition-group-legacy was found to contain malicious code. Source: ossf-package-analysis...

Malicious code in @crepo/crepo-url-query-mapper (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a8556f30a48d0b1c957d0d66394801c28e6259503ed20f4cbf900102b962ee5f The package @crepo/crepo-url-query-mapper was found to contain malicious code. Source: ossf-package-analysis...

Malicious code in lium-io-gztensor (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 2f87521be2fb53979b969dc362d41bfcf6c9f860f8d6517a76889a81dedc06a1 This is a typosquatting/dependency confusion package that is part of a campaign embedding malicious code but was found before the malicious code was injected...

Malicious code in lium-4-96 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 f30524e8a9ff2b7c5b43b57ea582beeba9d8f94da4097ecd572d26b4177e6626 This is a typosquatting/dependency confusion package that is part of a campaign embedding malicious code but was found before the malicious code was injected...

Malicious code in async-substrate-interface-upgrade (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 9f97af1701ef4cd3f9c0a8bf1f8245a4291ac3b704b9149972b27a6dd9966428 This is a typosquatting/dependency confusion package that is part of a campaign embedding malicious code but was found before the malicious code was injected...

Malicious code in celium-collateral-upgrade (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 adea9a91926d593420b0d9d07dd66bc5656bb42bf3735074a3f33533800a79dc This is a typosquatting/dependency confusion package that is part of a campaign embedding malicious code but was found before the malicious code was injected...

Malicious code in gztensor-cli (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 6010189e23e54782200df770b6e40ed7e37284779c25f28cd145aadd9ee8b623 Package clones a legitimate library and adds a hidden code that downloads a malicious script. The script then downloads an archive with malicious executable in...

Malicious code in faceplate-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 06d59e051a3b111ec2ba70071d0c2273f89c30a8eb1c6de75cb69d2eefc08b17 The package faceplate-ui was found to contain malicious code. Source: ghsa-malware 760b2fdc48604bbd4ed6a6251e192cec01c7f27dc59320b0a6e7f5fec3d1c13f A...

Malicious code in diskho (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d03f656f5769803487abac8cada65f7f7a80d04ecbb9c39633408b2c48a157b5 The package diskho was found to contain malicious code. Source: ossf-package-analysis b944051826f01c581baeba101564a1e463b08dc5ba4353b9598eff67ebddc9f...

Malicious code in shop-state (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5afad53032ae0acf7c8b481c6f0bd05fc4a1c283de24285d35b19a376cfa1b10 The package shop-state was found to contain malicious code. Source: ossf-package-analysis...

Malicious code in @signify/vue-components (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ff7ae41abedc64bde81c60772d7adf7e58c51a651ce76e0684c0ea713fe130d The package @signify/vue-components was found to contain malicious code. Source: ghsa-malware...

Malicious code in @airtel-web/legos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e2dc2961b8c79c5958e1d5ebe27ec58d5bf181c3027555890b39d1c06a37df27 The package @airtel-web/legos was found to contain malicious code. Source: ghsa-malware...

Malicious code in published_at (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6089f817f79b6c53b35373aac18fd90de2fba2940ba8daa1286c5d82ede4a9c The package publishedat was found to contain malicious code. Source: ghsa-malware dcecd48f5e6fb3589ec38336393f753621839d5278f70c28e6349129fd2eb39b An...

Malicious code in pyrogrom (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 ef643052c84683fba662eaded2786ba6fa993e69224608070ad949d4f3d0c3e4 The package, distinguished as a speed testing or typosquatted Telegram library, contains a Telegram bot to perform remote control of the computer --- Category:...

Malicious code in spire.officejs-document (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c8d977ed41d3fbf548651b650de7a64445638d9290c37650ea4063a4cdb9dfab The package spire.officejs-document was found to contain malicious code. Source: ossf-package-analysis...

Malicious code in spire.officejs-common (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2d5bc6046960bccab3120bb794cc2c868fa2bb41e0d35028f39e2e9ca9033a80 The package spire.officejs-common was found to contain malicious code. Source: ossf-package-analysis...

Malicious code in spire.officejs-editors (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a16e661181ec9b4834133423f88991671288814200d66aa148195cc9c06b5aff The package spire.officejs-editors was found to contain malicious code. Source: ossf-package-analysis...

Malicious code in aiihttp (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 e98bbfaaccc91213e80bb0a09f5081a5701cf01629ac8b82370adbbbc42178b0 Obfuscated code downloads an encrypted binary blob, which is malware finally starting cryptomining. After starting the malware, the Python package uninstall...

Malicious code in aoohttp (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 9d3438b2d065c0535b5ac80ce789201be4f8095642d0f10a20a7da13d46152f8 Obfuscated code downloads an encrypted binary blob, which is malware finally starting cryptomining. After starting the malware, the Python package uninstall...

Malicious code in auohttp (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 f4b76a407d91e23cb990d6ed08e3c0e81898f2b97d690db76b4e3b547fda5fab Obfuscated code downloads an encrypted binary blob, which is malware finally starting cryptomining. After starting the malware, the Python package uninstall...

Malicious code in aiohtto (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 9338a4f3f167cf0ba279696ac9ae9bae26219391e2a87a805cc8bb92b4cddd6e Obfuscated code downloads an encrypted binary blob, which is malware finally starting cryptomining. After starting the malware, the Python package uninstall...

Malicious code in atm_bmw (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aca0601b1d8613895ac524d33f93ab92365d464e80eb526e58e2ca919abba129 The package atmbmw was found to contain malicious code. Source: ghsa-malware 20fd437233c7e774bdca9f661a997a94bd0d8373866763c3638f9bc12c588c5e Any...

Malicious code in blobhunter-depconf-poc (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 6bbf9ae244466116ca709955328b8ae27867658e636ac521004edd501b38d4ef Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...