Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
OssfRecent
RecentMost viewed

225933 matches found

OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:31 p.m.•7 views

Malicious code in @postman/postman-mcp-cli (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 10b1da432f0b6ecaccc97520bb9697e6dbf44b04415bd15e6ac9864c86f3b37e The package @postman/postman-mcp-cli was found to contain malicious code. Source: google-open-source-security...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:31 p.m.•3 views

Malicious code in @postman/pretty-ms (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d2d31f7cbd143304b0472244ba5f73daa6e96abbc923b854d2736c5ea7807d16 The package @postman/pretty-ms was found to contain malicious code. Source: google-open-source-security...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:31 p.m.•5 views

Malicious code in @postman/secret-scanner-wasm (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b5d1604689ef91985fbc1fe9f8958eb7a50835e71b7cfa4125de687ca37c2d19 The package @postman/secret-scanner-wasm was found to contain malicious code. Source: google-open-source-security...

6.9AI score
Exploits0References9
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:31 p.m.•5 views

Malicious code in @postman/wdio-allure-reporter (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e12dee0f26482378a3726898a1190f71749f0cca809d0d6dc3d9c3419473924f The package @postman/wdio-allure-reporter was found to contain malicious code. Source: google-open-source-security...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:31 p.m.•6 views

Malicious code in @postman/wdio-junit-reporter (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ac6f5998a89d257823fdf6368153d30126e695eb96b8ba6a5cd500fe661b8f8 The package @postman/wdio-junit-reporter was found to contain malicious code. Source: google-open-source-security...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:31 p.m.•6 views

Malicious code in @seung-ju/react-native-action-sheet (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4a093775c06aa43c37f1449879903040ac8d4670967b0fc9931be9fc842d3c72 The package @seung-ju/react-native-action-sheet was found to contain malicious code. Source: ghsa-malware...

6.9AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:31 p.m.•4 views

Malicious code in @zapier/mcp-integration (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 41b2f7745be8592869c863671add1d5a04c1d33f7a2c23a54fde611a5e021226 The package @zapier/mcp-integration was found to contain malicious code. Source: google-open-source-security...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:31 p.m.•5 views

Malicious code in @zapier/spectral-api-ruleset (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d3f10a9695952f169fff0da94ca1ea47045d97dd486857aad5dbc7b608e2316b The package @zapier/spectral-api-ruleset was found to contain malicious code. Source: google-open-source-security...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:31 p.m.•6 views

Malicious code in @zapier/stubtree (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b8dfbd67e2e2058bdfb35bcccc34ffd8ed380f6f22fc196d18803fbca6725a04 The package @zapier/stubtree was found to contain malicious code. Source: google-open-source-security...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:31 p.m.•5 views

Malicious code in capacitor-voice-recorder-wav (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 15d039d86e89d2e74c80f640d3c4dc358a5e3fc0b972d07a1d08b9c5dee3dad9 The package capacitor-voice-recorder-wav was found to contain malicious code. Source: ghsa-malware...

6.9AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:31 p.m.•5 views

Malicious code in create-mcp-use-app (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2781601c3ba0c5d6d4b78bf322d88a4d189473e68d2382c171106342acacd271 The package create-mcp-use-app was found to contain malicious code. Source: google-open-source-security...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:31 p.m.•3 views

Malicious code in mcp-use (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e38bd6291f6f6d66e34397d1b1495513a53528efac94b63487a1646eb7aa45af The package mcp-use was found to contain malicious code. Source: google-open-source-security...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:31 p.m.•6 views

Malicious code in posthog-docusaurus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 317ab9fe546aa6930bf7fb3ee7c35c737d56963b41a4f3d4363abdb0ebfbfa49 The package posthog-docusaurus was found to contain malicious code. Source: google-open-source-security...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:31 p.m.•5 views

Malicious code in web-types-lit (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 35a949be18eda53349645226baa05c49f057d118e0343aee348fe75d0dde61dd The package web-types-lit was found to contain malicious code. Source: ghsa-malware 33c93b24ea8e92f97d8d57123f682db8c606b6c469b013baa1015b99a6de9ee1...

6.9AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:31 p.m.•7 views

Malicious code in zapier-platform-legacy-scripting-runner (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e90298308f4d64cfb41746e3f65bcdbae9f4d790f7db3034608ea5d520aa73cc The package zapier-platform-legacy-scripting-runner was found to contain malicious code. Source: google-open-source-security...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:31 p.m.•8 views

Malicious code in @zapier/ai-actions-react (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0711da4a6c6d0dbc599d757b367430a63ae51f6f4fb48b6758fb21ba718b0778 The package @zapier/ai-actions-react was found to contain malicious code. Source: google-open-source-security...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:31 p.m.•5 views

Malicious code in @postman/pm-bin-linux-x64 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 94045a09bfa0905195be4f028d9e42bcf608154a645b14b2028754dc6e787b80 The package @postman/pm-bin-linux-x64 was found to contain malicious code. Source: google-open-source-security...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:31 p.m.•7 views

Malicious code in posthog-react-native (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bdc429049d0797390f57bc821cabd2d46fad88c5363136fc96bab4b5497000fe The package posthog-react-native was found to contain malicious code. Source: google-open-source-security...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:31 p.m.•3 views

Malicious code in @posthog/kinesis-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f2f869c9f2e7f4d35c729f506eb479a88bab7ca0dcd2aa6f2485319d87f39dd5 The package @posthog/kinesis-plugin was found to contain malicious code. Source: google-open-source-security...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:31 p.m.•5 views

Malicious code in @postman/pm-bin-macos-x64 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7af6b141ac3ae548c7fadfe1523b270a35c69e8f5c20035f682e9ee726f1bdec The package @postman/pm-bin-macos-x64 was found to contain malicious code. Source: google-open-source-security...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:31 p.m.•4 views

Malicious code in @ensdomains/buffer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bae46f5c19a843ced3c421c4ef2bb7fc8c6dc112240fc84abafd26405d0a85bf The package @ensdomains/buffer was found to contain malicious code. Source: ghsa-malware...

6.9AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:31 p.m.•4 views

Malicious code in @posthog/plugin-unduplicates (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c908d2f59bb746353f63ff6561e3e99d8055d86ee72332228bfd40f24b8dad0 The package @posthog/plugin-unduplicates was found to contain malicious code. Source: google-open-source-security...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:31 p.m.•6 views

Malicious code in @posthog/hedgehog-mode (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a5b044ae176df3e6019c54c314bdf3ec17c98741510cf5c024f85a07c7e520b1 The package @posthog/hedgehog-mode was found to contain malicious code. Source: google-open-source-security...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:31 p.m.•5 views

Malicious code in @postman/postman-mcp-server (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c7c276129c0d99cb4f8aa63e9f3911b1f38145837396ac3b00ba48533a6050b8 The package @postman/postman-mcp-server was found to contain malicious code. Source: google-open-source-security...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:31 p.m.•5 views

Malicious code in posthog-node (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c2ec4a50c0b553e9abbcc25147ad50014cf1488415e1ec8e3234f3e9bb3cc24e The package posthog-node was found to contain malicious code. Source: google-open-source-security...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:31 p.m.•6 views

Malicious code in @posthog/geoip-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 52ea0a6028390c3a43f98bcd7b2afa97a6f1fae311e31138717c69d610c4c8a2 The package @posthog/geoip-plugin was found to contain malicious code. Source: google-open-source-security...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:31 p.m.•6 views

Malicious code in @posthog/sendgrid-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 538f52ec82c02a69031b8b84a1e12b2d22ee68462c722f9dd4a8ea07d4e81d44 The package @posthog/sendgrid-plugin was found to contain malicious code. Source: google-open-source-security...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:31 p.m.•5 views

Malicious code in @posthog/wizard (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 43ed05e891884ed2cf2d6f1790352cd3d07f97a03c6fb152561eb2e8b9d938c2 The package @posthog/wizard was found to contain malicious code. Source: google-open-source-security...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:19 p.m.•4 views

Malicious code in @darwinex/react-custom-scrollbars (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c14e6f6b8558a92600a6b705cd18fbcfc9eca9a163fcd69c792492154fbe37e The package @darwinex/react-custom-scrollbars was found to contain malicious code...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:19 p.m.•5 views

Malicious code in @tezign/html-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 437929a07e5bc4e0e6dfe545fa858db027aa2ba4e6fa87701a09d5b07277b543 The package @tezign/html-webpack-plugin was found to contain malicious code...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:19 p.m.•5 views

Malicious code in @sauravthakur/corplib (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ebf32bc4fe1000eb019415e2b1cbe68dcc9b52b3abb00d95d132ecb0740dde9 The package @sauravthakur/corplib was found to contain malicious code...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:4 p.m.•5 views

Malicious code in @asyncapi/studio (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3eabd7c33d6759f64f573e5cc75565c4669ed790fe45d77d2756d1380b79063f The package @asyncapi/studio was found to contain malicious code. Source: ghsa-malware be3f6f1fe39d5dd5c1ee3ab702e2bee67bc36c54ded865ad25eb2504919b58...

6.9AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 4:1 p.m.•4 views

Malicious code in ra-data-firebase (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e18e2fda31999ba999f5629853253dd8ff93b75237944d8c2971c2f54381cc13 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.8AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 3:16 p.m.•6 views

Malicious code in rollup-plugin-httpfile (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2bf613b52797ec3ff23536082d58a6d97dc4c672dfeecf2dc2ce21709ff8cdf7 The package rollup-plugin-httpfile was found to contain malicious code. Source: ghsa-malware...

6.9AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 3:15 p.m.•4 views

Malicious code in @caretive/caret-cli (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7dbdd6e96adf12b150ce3a286faf8fcab904140af31ec590599a3c1c01a3ba12 The package @caretive/caret-cli was found to contain malicious code. Source: ghsa-malware...

6.9AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 3:13 p.m.•7 views

Malicious code in poper-react-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ee86d01d82c77cc7c83c6d28159deba7fa26192da0ab69659d92f78f4d41cd60 The package poper-react-sdk was found to contain malicious code. Source: ghsa-malware 2c3b77a8909da7a5fe13a2fba433147468dfa75dee206eaa996325423e38244...

6.9AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 3:5 p.m.•4 views

Malicious code in react-native-worklet-functions (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6ed2ae3214c7915580ec4f119fc2fc1ee0e071e2deea48ef419973982180aa9c The package react-native-worklet-functions was found to contain malicious code. Source: ghsa-malware...

6.9AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 3:5 p.m.•6 views

Malicious code in @ensdomains/web3modal (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0de2afae3cc53842a9517b3463d4a07b3945667241988137bdc9598a49b189ab The package @ensdomains/web3modal was found to contain malicious code. Source: ghsa-malware...

6.9AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 3:4 p.m.•3 views

Malicious code in n8n-nodes-tmdb (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a791d5a6c99e04f00686606d40149f2ab7c17572f074de1dbb9ee62ab204aee The package n8n-nodes-tmdb was found to contain malicious code. Source: ghsa-malware e992a5e0af57cdc4d581692395fdc7c00152c3b400d60f4c73f0bbc67949845d...

6.9AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 3:4 p.m.•4 views

Malicious code in orbit-boxicons (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2bafb55d5f4d1082ed8b15fdeefee0570d3d86fe8b2a13bd046fd62abce85c18 The package orbit-boxicons was found to contain malicious code. Source: ghsa-malware b738b9c09b7dc6b9fd5de0bd3a6006ea4931482eaf62228b6837997f0a625b2b...

6.9AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 3:4 p.m.•5 views

Malicious code in gate-evm-tools-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f11f5364b5246431e888b7293099cd8833dbcdd463cc7ce7d1aeabdc066faa5a The package gate-evm-tools-test was found to contain malicious code. Source: ghsa-malware...

6.9AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 3:3 p.m.•4 views

Malicious code in @louisle2/cortex-js (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c444e50876d5f75647d843c02c0b22a893e1129c31baca504e57985a07a2f5bb The package @louisle2/cortex-js was found to contain malicious code. Source: ghsa-malware...

6.9AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 3:2 p.m.•5 views

Malicious code in capacitor-plugin-purchase (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 54ff438ebca922d9d6cb6a8a96700003065dbfc0ed65a5984edec2d5f5d37751 The package capacitor-plugin-purchase was found to contain malicious code. Source: ghsa-malware...

6.9AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 3:2 p.m.•4 views

Malicious code in expo-audio-session (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9ab638e9e692037cc0b74ba589ba0f3986462fcf5310a6ba4418a01fb08c6866 The package expo-audio-session was found to contain malicious code. Source: ghsa-malware...

6.9AI score
Exploits0References10
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 3:1 p.m.•5 views

Malicious code in capacitor-plugin-apptrackingios (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector db2b5d0386124d893499ec984d85876c5267739a62e53b776e829c3449a7cee8 The package capacitor-plugin-apptrackingios was found to contain malicious code. Source: ghsa-malware...

6.9AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 3:1 p.m.•4 views

Malicious code in @markvivanco/app-version-checker (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eb3390637a7e3c1122d5f1f2417189358dec13936938bd997c1bf5949c1bb8dc The package @markvivanco/app-version-checker was found to contain malicious code. Source: ghsa-malware...

6.9AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 3:1 p.m.•6 views

Malicious code in asyncapi-preview (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ace11e1c5f0f9487098786e9c0a3b43a0491cd1a23d74b4a9dcfc67fc04c621a The package asyncapi-preview was found to contain malicious code. Source: ghsa-malware 6c99a62eec6b0d9e3b5e9e99c8cb5f10e3286c94fb0e7e44e25808892679a0...

6.9AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 3:0 p.m.•6 views

Malicious code in bytecode-checker-cli (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b98e19304d760275f4ded25b69604ea9eb988c2b13681aafd2a400f0319a38c The package bytecode-checker-cli was found to contain malicious code. Source: ghsa-malware...

6.9AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 3:0 p.m.•5 views

Malicious code in @actbase/react-native-devtools (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6903aaa72b2c62de00654968d7729b4fd07bfa78bf68f14c1ee924f6c5dde9c2 The package @actbase/react-native-devtools was found to contain malicious code. Source: ghsa-malware...

6.9AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages•added 2025/11/24 2:59 p.m.•8 views

Malicious code in @actbase/react-absolute (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ed7fad65f30e84a768e6bfde1db53365d73d067672f3722603eecc021adadadd The package @actbase/react-absolute was found to contain malicious code. Source: ghsa-malware...

6.9AI score
Exploits0References4
Total number of security vulnerabilities225933