Lucene search
K

226591 matches found

OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 11:50 a.m.•8 views

Malicious code in @mastra/voice-playai (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9279891e04d7670f84ecfe2e8c0d680c63d965a5626b42bc7f393bb7b3d07710 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 11:11 a.m.•6 views

Malicious code in @mastra/github-signals (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fb0b5cd9ad2807a3c5ffb0cb19b0df207c6befcde1a5b300528611a061cfbd2a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 11:10 a.m.•7 views

Malicious code in @mastra/mem0 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b7d985842e7c7f2b604c887f828658e3d7c3dc59c5a39c76c93007428a9db74a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 11:8 a.m.•7 views

Malicious code in @mastra/node-audio (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 73eef90e03a4f5d1bdd4ae206bd5eb7f54b2fa2ae02644eec06ad1dcaf27c38c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 11:7 a.m.•5 views

Malicious code in @mastra/react (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 25fda6a7b80c3dfe1e7a3ac3abc093b8d6c3e1e1ea74fe3cd882fd59717c6ff5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 7:9 a.m.•6 views

Malicious code in telegram-lite-grabber (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 70271d13337a92afafb6d5db770a6d73cd960b6910992013d57ec24388ab8fa8 Package exfiltrates data from the Telegram application to a remote location, effectively collecting Telegram sessions. --- Category: MALICIOUS - The campaign h...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 5:12 a.m.•5 views

Malicious code in @mastra/arize (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2fd57d090db3236dc868da2b138f4e6ff4fc06dd807585ed63fb2142a6ada7d7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 5:9 a.m.•8 views

Malicious code in @mastra/voice-elevenlabs (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5928967726f53b27e911ec3135ff2b38c7322808df02ab9a2dc349a9c2759ea3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 5:8 a.m.•6 views

Malicious code in @mastra/gcs (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 417444951ff9923db14895d48422784ad2b4824acb0830b697fbe3c203a6448c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 5:7 a.m.•6 views

Malicious code in @mastra/voice-deepgram (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d27a512f8f3e5e382c0e66b772a55d71fb8b6ce5df839a640ea37e5c9c0a6165 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 5:7 a.m.•6 views

Malicious code in @mastra/voice-aws-nova-sonic (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6debe9f9f0ec8e7e6976592d04101935d3c52298916d24af59c7ebd2a74fa04c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 5:7 a.m.•6 views

Malicious code in @mastra/voice-google-gemini-live (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 85b4e2a1889a35847a9a95f8f278a04c8d342410fa8ca89f0b44486cfa04184d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 5:7 a.m.•8 views

Malicious code in @mastra/voice-google (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 66e118ff099c1c122378333614a044bc8c76189ac7bfe2db6ba8ee9b329bd6af Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 5:7 a.m.•6 views

Malicious code in @mastra/voice-openai (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bc91b04916e4688c77893583ae9f69910c48dc90453cf1659c78fd5a98108f08 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 5:6 a.m.•8 views

Malicious code in @mastra/voice-openai-realtime (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2254b3938b8fd94076149bd9982d0fe0c7bb661e97c1eebb061bce27efb05e37 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 5:6 a.m.•6 views

Malicious code in @mastra/google-cloud-pubsub (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 036d2b5af52fe4887c79dad7608f2eb90a1ccdb96932294cc29d8cbb158297c7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 5:6 a.m.•6 views

Malicious code in @mastra/e2b (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 29b86616f862296e7b1e71c3d25c0291dddeb8df637269d64681076ff0397218 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 5:6 a.m.•5 views

Malicious code in @mastra/blaxel (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 05fe4bfa601c30faea58f0f662f829a4a1d5fb408af2d5ac2e2971a56793316d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 5:6 a.m.•6 views

Malicious code in @mastra/daytona (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3aba6cbeaa5fdf0c6d2bc9ff281f457d2bc65c4aeecd39bef056e6df4bb4d885 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 5:6 a.m.•5 views

Malicious code in @mastra/mcp-registry-registry (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d565975ff7c83efbde8da1110e6be04ef6ae86591cc052f1d9052ae0175b3320 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 5:6 a.m.•7 views

Malicious code in @mastra/agent-builder (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ae994313e5437ca5d75c06e9b875363f20ef1a07c282e7d24dddf1d85dec90d9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 5:6 a.m.•8 views

Malicious code in @mastra/longmemeval (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e5b7004652c218fee3b01477a87cd1fb8b9e1a5c93e8f054bd25be2c994fe625 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 5:6 a.m.•6 views

Malicious code in @mastra/stagehand (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d7fc5faac600c03f2cb3a80bc9b0d34714b5259d81a09df552fdc07f672995c0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 5:6 a.m.•5 views

Malicious code in @mastra/tavily (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 34e25d282e539e012ebfb3e0b22099323fed0a8f561cd1efaa1c83cc911d718f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 5:6 a.m.•7 views

Malicious code in @mastra/temporal (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d28c9a32d6cff118197df8ced716b72fc9c1e4f8e19a984970fa5c710d3d6937 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 5:5 a.m.•8 views

Malicious code in @mastra/agent-browser (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f47e1be40751417e2e8e62b23068d7f74df247fc0c2b47cdf0b7ddb9733ca2f4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 5:1 a.m.•12 views

Malicious code in @mastra/otel-exporter (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e5d973fa28a778f38f657666d9f26b5ff350ab4de18ae930c3ee9fd4732edfb6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 5:0 a.m.•18 views

Malicious code in @mastra/playground-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4a1183fddcc1c7e3be311a4e6fb47609f1b770087fdae294cba960c154845cf6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 5:0 a.m.•6 views

Malicious code in @mastra/docker (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware dd2417620dd4f98c496cdb956e0e2cf1b55f25dcc57ad7a360f072acfa88ba9c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 4:59 a.m.•7 views

Malicious code in @mastra/turbopuffer (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bebc3d61ae5c31ebd30ad06659ebe53a464c94aa2e7294674c6f51bbd3d1c333 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 4:58 a.m.•6 views

Malicious code in @mastra/deployer-netlify (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 400778120333cddf6141fc4925d89a6253b8cf6a137fe20e253b73429784e997 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 4:58 a.m.•9 views

Malicious code in @mastra/cursor (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ac742321cf72f2fa4cb958772f032eeb2a3ac062d31237ef0699b9de6ac0bc41 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 4:58 a.m.•6 views

Malicious code in @mastra/claude (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bff1b7d5de7b3db857565c286bb6f3873ebb3a5283ff5e679c66643cc656f598 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 4:58 a.m.•8 views

Malicious code in @mastra/deployer-cloudflare (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4b527a9b9e07cd43b9596a7e0c555ed08c580df6c6ae9355314bc518910fa746 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 4:58 a.m.•7 views

Malicious code in @mastra/cloudflare (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1ed141764704ba509c2a0c4921975728b42e22a6b849424057fae331367de512 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 4:58 a.m.•6 views

Malicious code in @mastra/pinecone (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d1244b3ee82f4d109fdc7b810cb96e8b50093a72b59b5d87f2bc1bebf2f29642 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 4:58 a.m.•4 views

Malicious code in @mastra/deployer-vercel (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 69a6be68fce1d2add8eecdcb19d01651c7fbcb5f67f38ac92ea27bc020e388ae Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 4:57 a.m.•3 views

Malicious code in @mastra/upstash (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e4a0dc55e522391f590cd7e4de3ba2f539931d0383b4b10a259f05fe60e62e28 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 4:57 a.m.•7 views

Malicious code in @mastra/s3vectors (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3570b32fded50b6620863bbc1cde398b82b2cfea1b4ac77e27fcd6fba4545394 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 4:57 a.m.•8 views

Malicious code in @mastra/convex (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware acae13d27edf4e66aa693ee00ce3df3eb508a09c9bf7a9b934a9d3804653f3ce Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 4:57 a.m.•7 views

Malicious code in @mastra/vectorize (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 72ce8b94b293ad896fc854265fe28fdbc060a6143c9dd57c1695e34f989ec2bf Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 4:57 a.m.•8 views

Malicious code in @mastra/qdrant (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2104f2096864f638672de7a6703c6d68877525368f204ecddb670f874b719a85 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 4:57 a.m.•4 views

Malicious code in @mastra/chroma (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 585531b45a44c194168c29b79cbe46bf3e8162c621420bc2b6254efe2e18d166 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 4:57 a.m.•6 views

Malicious code in @mastra/couchbase (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7c3dd9df75f151ee9ecb8c2c0a4ed7f0a3fc7c2eaa2a674dbccdeb8fffb96469 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 4:57 a.m.•7 views

Malicious code in @mastra/auth-better-auth (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b2f879fc8d7a4019ebb32f8cc0f2a664f940ffda401abf7cc3f843d160a9c082 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 4:57 a.m.•6 views

Malicious code in @mastra/cloudflare-d1 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b90c0979e73c015971950dfb03979edacfce9b04f146f9b118092118bab6d83a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 4:57 a.m.•6 views

Malicious code in @mastra/dsql (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 335005b3ebe0d079971355ff2fc65e0b81c27816161f1ba2bddf1c4bc4129000 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 4:57 a.m.•8 views

Malicious code in @mastra/auth-workos (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d1bd914d8d4ec601520b1631f4e082990c5fd661997374dc5fa6a07509672087 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 4:57 a.m.•7 views

Malicious code in @mastra/auth-auth0 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b0fbe96c59a0cfac17ddbee22541fc2ba13a1ef82c91d75bc4b202c66aec4e4d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/17 4:57 a.m.•7 views

Malicious code in @mastra/mssql (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 02facd08f8ad63bc4038bce1eaa22a1487bd4703312f0763c683f1f304201412 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
Total number of security vulnerabilities226591