News
For a package without any mismatches, the output should look like this: $ ./npm-manifest-check.py color No mismatch detected for color. To inspect multiple packages, developers can add them to a ...
Also known as package confusion, this form of attack was first demonstrated in 2021 in a proof-of-concept exploit that executed counterfeit code on networks belonging to some of the biggest ...
The PyPI package flood is just the latest in a string of attacks on public repositories with the intent to plant malicious code. Over the weekend an attacker has been uploading thousands of ...
Stealing SSH and GPG keys. According to Martini, the malicious code was present only in the jeIlyfish library. The python3-dateutil package didn't contain malicious code of its own, but it did ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback