225940 matches found
Malicious code in @asyncapi/converter (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 391d5e53843731fb634a2f3811928f21e466b64aa48d1383b08f7f3708f603db The package @asyncapi/converter was found to contain malicious code. Source: ghsa-malware...
Malicious code in posthog-react-native-session-replay (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2487b6f3e3f9f2ef47f2509033fe071b332f5035e1e01320482eea928ae8a120 The package posthog-react-native-session-replay was found to contain malicious code. Source: ghsa-malware...
Malicious code in @postman/csv-parse (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6072df393f967e34b9e50f3c9843f4716a7e65e30aff5648c7f003cb37c38e01 The package @postman/csv-parse was found to contain malicious code. Source: ghsa-malware...
Malicious code in @asyncapi/generator-react-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7b0dadd48783af136a9dcf3f65cf9f24675841f02c7d1a5b6dc60709b392bf98 The package @asyncapi/generator-react-sdk was found to contain malicious code. Source: ghsa-malware...
Malicious code in @asyncapi/modelina (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b6021816ea47fd6743ed24c196df8db60f0649e0d5b185ceb9b418ba457b21e3 The package @asyncapi/modelina was found to contain malicious code. Source: ghsa-malware...
Malicious code in @posthog/ai (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0a9a022b20b3025cb0846139ab6f2a1308025ed8ee902db18aacbfa95c6ea7e6 The package @posthog/ai was found to contain malicious code. Source: ghsa-malware 1e6a08419969270cca059f804bb3ec25aa0427f00ef555a9409c12d50921a83c An...
Malicious code in @asyncapi/generator (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 63359c608231ec06641739879ea8b63b6989462cf0f52e20668b9a1ad27e04c8 The package @asyncapi/generator was found to contain malicious code. Source: ghsa-malware...
Malicious code in @asyncapi/react-component (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d9ebe88915a6eee986912a6566783764ff832588763eaa7b763710ed9f992299 The package @asyncapi/react-component was found to contain malicious code. Source: ghsa-malware...
Malicious code in @asyncapi/protobuf-schema-parser (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 927e5dcfc89c461512068769c97bb06898751cd42cd15f50d97c4760c658269b The package @asyncapi/protobuf-schema-parser was found to contain malicious code. Source: ghsa-malware...
Malicious code in @asyncapi/avro-schema-parser (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 563d7e586605241445ca55919018f95a81d98cbf9599eefa9c812eef9ccd7747 The package @asyncapi/avro-schema-parser was found to contain malicious code. Source: ghsa-malware...
Malicious code in @asyncapi/openapi-schema-parser (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7b4e9b39029c1f0084db9cd77fb419e5b003036f5b3db50d6b52097114f0c729 The package @asyncapi/openapi-schema-parser was found to contain malicious code. Source: ghsa-malware...
Malicious code in @asyncapi/parser (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 60490138601b88d5bc5b3f5cfb5d6bf7f1c04848429e5aa48c1812ff4c8208e5 The package @asyncapi/parser was found to contain malicious code. Source: ghsa-malware 58daec6c982800e33901b1072260f4b144aa0b64db38ee45dd9219fe13a654...
Malicious code in @postman/tunnel-agent (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6961dafcc910bb7a6b1db8cb597068eeb85f973dcd669392354a7b614928dbf5 The package @postman/tunnel-agent was found to contain malicious code. Source: ghsa-malware...
Malicious code in @asyncapi/specs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 46e1904e729f9b51f22f0c24624af6ce0bfa9e7a02a0968c15469cd5ba665c2f The package @asyncapi/specs was found to contain malicious code. Source: ghsa-malware 5715faf8c80acf7c963aac8c332a2cffed06a23ca9663a2fdcb6fd11be4325e...
Malicious code in @posthog/core (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 92317c7f15a5eade85fe5c248b9b31870be1b384a5e5455dd3ea546c94c279e4 The package @posthog/core was found to contain malicious code. Source: ghsa-malware 8fce4f3a908b835a108ad8c30d1f2095f67e065911b353c73d0f9151be9ed6bf...
Malicious code in @zapier/zapier-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d39a04949d436340c422fef75a4dab8c20b487218e69e62cdcd198bddbe9ee0e The package @zapier/zapier-sdk was found to contain malicious code. Source: ghsa-malware...
Malicious code in mongland (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 a003c7277ab04d5aec30eaa72b0f28b25c7534e6b036c381142300b3ac0bde9f Importing the module starts an infostealer --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: 2025-11-mescouille...
Malicious code in zakuchienne (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 6cab2f6ce1c1eec52747b1f7057550b9b35d3c4f6d8c04b51e37afd47c1e5625 Importing the module starts an infostealer --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: 2025-11-mescouille...
Malicious code in @ensdomains/cypress-metamask (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 19427e64315a085f7001dff6a896730aa4cce33cf679f6a2da0a8bc61e96fb58 The package @ensdomains/cypress-metamask was found to contain malicious code. Source: ghsa-malware...
Malicious code in @validate-pubkey/hex (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 05db2afe6b0d7557f2c2153dd15df68ab69667e8402bf92f2b2e2d900eb5728f The package @validate-pubkey/hex was found to contain malicious code. Source: ghsa-malware...
Malicious code in parse-session (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8e6800038c1b56247a0767faecf501d0c74de134197bb0edbae2d27b8a958547 The package parse-session was found to contain malicious code. Source: ghsa-malware 5b04d6ff25ce91de5057fed89547b08687055f2ca7a217a2886eecb79c06f9e9...
Malicious code in chai-async-chain (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e99ef9605c8341ad648b4f6fb3d4102c0288cf3742d3e1abe55c1d45d9fcdbec The package chai-async-chain was found to contain malicious code. Source: ghsa-malware fdec53906ddd8f960924b6b45b6c8a742115debcec85495bd0f052d7d13105...
Malicious code in tailwind-inquirer (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9713ae723aefcab52d65da5c1473fffe7835c37849c133d7cecffa7ba7284e66 The package tailwind-inquirer was found to contain malicious code. Source: ghsa-malware...
Malicious code in tailwind-pulse (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 994e15b9c34fb68a81553df4c2a51b9412bbcc3543da29a73b6f087507c9ea4c The package tailwind-pulse was found to contain malicious code. Source: ghsa-malware ca854515da8a9c174658ca39afad56810ab87adcaa9eff2fca5043dbd8f50d04...
Malicious code in hash-guard (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7b2ca55ce577caa1adabc53a3513e7b1d739be9cf9870f502d0dce75b44e2540 The package hash-guard was found to contain malicious code. Source: ghsa-malware 7c7e7dba950f2d191fe82c46ed3f9abd10509690b07fb3f1fb97f0ec39ff4304 Any...
Malicious code in loliloli (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 49613dc24146ca83bc9bd4c3192468ff9b16fc61797e4b79a957d79f98d3552b The package loliloli was found to contain malicious code. Source: ghsa-malware 6188273fee11225ff9b29efe7923768ac1792c131fd40768f5127839c6be6ceb Any...
Malicious code in token-verify-passport (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c9e55c841368b86c3afd97dd35da3304c3507470af6aeb1bada98fa128233e03 The package token-verify-passport was found to contain malicious code. Source: ghsa-malware...
Malicious code in vue3-transpiler (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 61eaca42a219c9b161768c7938d34f6bc4d6e169c5ae43e88acf7a8a70be537b The package vue3-transpiler was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in shinhan-limit-scrap (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dae6aee79d5386d3525290fdc37160052ab2cfc88cfe444751cf1e0c09122b48 The package shinhan-limit-scrap was found to contain malicious code. Source: ghsa-malware...
Malicious code in @quick-start-soft/quick-markdown-image (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ebaec604b88bfa99689645f0ecb3061111aa393606337785c71c2755493864f1 The package @quick-start-soft/quick-markdown-image was found to contain malicious code. Source: ghsa-malware...
Malicious code in @quick-start-soft/quick-markdown-print (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 49e82ae5f39d0c568ce2ebb23ff053c97eba1c0bb306b946c3fefc4c0680b526 The package @quick-start-soft/quick-markdown-print was found to contain malicious code. Source: ghsa-malware...
Malicious code in lion-second-package (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0070c2e566c699a1be9bf159d90a6b42fad16d6c4f74b7315c262ed5e5897f09 The package lion-second-package was found to contain malicious code. Source: ghsa-malware...
Malicious code in base62-58x (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 329e19a0dfe372f18c65552e38f92a7cdaeae2c3bcfae8956d0a233a7885da88 The package base62-58x was found to contain malicious code. Source: ghsa-malware 5cd641e4e74a586087038295a99f8a1ee51c4b8ee02dd79da6aec94e39c39999 Any...
Malicious code in cbre-flow-common (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 947d73050012f020f6fdd2335ac7c8602c707fb84fb141fbfdd1e88a30ca3650 The package cbre-flow-common was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in mescouilles (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 c081f74035c370212a2a4d7ab34d10ddc29fdb634e9cedfeeebd407e43b15fae Importing the module starts an infostealer --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: 2025-11-mescouille...
Malicious code in testingpkgja (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 0bd692e8fc46a3f43477d1f095e7c6e2b9666d2d2c60655ac91efd2be07f5193 Package downloads and starts an external executable. The executable starts the Windows calculator application. Considering this and the package description, th...
Malicious code in hooktest1 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 b3e91d71ab21e3575f1354593a314d50bc188b0db7b3851040e522426a765417 During installation, the package starts a code to retrieve and execute commands from Discord --- Category: MALICIOUS - The campaign has clearly malicious inten...
Malicious code in speed-testing-vps (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 227b3ee25e084b57a160b7287f80a8ab8da0559184c81b5e9cae1d03941ca51b The package, distinguished as a speed testing or typosquatted Telegram library, contains a Telegram bot to perform remote control of the computer --- Category:...
Malicious code in minizip (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 33ba100525dffc7a828e4b7384f862ff22dfb55d2e7d61a34c0d31ecdff64c10 During initialization of the archive-support class, the package starts code from another file and downloads multi-stage malware --- Category: MALICIOUS - The...
Malicious code in com.unity.xr.visionos (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cfc5fb97986cf3c32288632dc0df9916994609543b354548885edf9d229dd489 The package com.unity.xr.visionos was found to contain malicious code. Source: ghsa-malware...
Malicious code in hexdecnet (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 4ca5c3aa5b553fffaca36241e0e3a6144c9b661b9e0cb77fd93ae34fc6b1ed7e Package appears to be designed for private key exfiltration, but no known usage. The name appears to be related to the cryptocurrency TRX Tron / Tronix. Some...
Malicious code in uuzip (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 bbfdf99ece618455cadb15bcd6d0d6a93707bd72278a58834e74eb88094279ee During initialization of the archive-support class, the package starts code from another file and downloads multi-stage malware --- Category: MALICIOUS - The...
Malicious code in mzip (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 cfa6ef3ee944ed5eef4429c7c9ec9488d9c2c70be6435ee1019851527272a9e4 During initialization of the archive-support class, the package starts code from another file and downloads multi-stage malware --- Category: MALICIOUS - The...
Malicious code in uzip (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 ee20087db4a86ce68765ba8046732e8f1fc906c58a0303e836429a63788dc97f During initialization of the archive-support class, the package starts code from another file and downloads multi-stage malware --- Category: MALICIOUS - The...
Malicious code in aiogram-msgeffect (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 edd5a99e6d1cebb47e713991f08b50dee4b5bf93ae487f6adc446318ccdba6e7 Importing the module starts obfuscated code which then look for data related to some Telegram clients and attempt to exfiltrate them --- Category: MALICIOUS -...
Malicious code in nspacercesolve (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 8a8c6f18d1f22d3d0f0b9902a176d91fdfe33270faea47c835a0078955b85914 During installation, the package looks for a flag file and exfiltrates it. Similar content is in the main file. There is no other purpose of the package ---...
Malicious code in tgeffect (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 e254217ac113edcc1914bdfcda06509137ceed6a7441b3c846653d769335bcaa Importing the module starts obfuscated code which then look for data related to some Telegram clients and attempt to exfiltrate them --- Category: MALICIOUS -...
Malicious code in hyatt-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45791aa99b3cab0aaa98d1564ffb2226c039f7e31723b2b4e6033d482e1ad3d6 The package hyatt-ui was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in epicgames-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2d81307de796f23d50ad12835bc127927e7afbc7c5e5d4fe4948f65ccd413cdd The package epicgames-ui was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in lyft-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 70fc3f07a26106b927cf0e4fc2f5f7692c8392b48700359bccb2618bc1ac1565 The package lyft-ui was found to contain malicious code. Source: ossf-package-analysis 1eca95468591ff582df3fadd1de8f6ffef5eb00720afbd1a511b5ea75ab556...