IQTLabs software-supply-chain-compromises issues

IQTLabs / software-supply-chain-compromises

A dataset of software supply chain compromises. Please help us maintain it!

Creative Commons Zero v1.0 Universal

126 stars 29 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

An Attack - But With No Known Victims, Yet

#41 jspeed-meyers opened 2 years ago
0
Python Malware

#40 jspeed-meyers opened 2 years ago
1
Chat Application Mimi

#39 jspeed-meyers opened 2 years ago
1
PyPI Malware

#38 jspeed-meyers opened 2 years ago
0
GitHub Clones with Malicious Code Added

#37 jspeed-meyers opened 2 years ago
3
Some other OSS malware

#36 jspeed-meyers opened 2 years ago
0
PyPI Malware

#35 jspeed-meyers opened 2 years ago
0
See if Any Attacks from Reversing Labs Partial Dataset Are Missing and Should be Added

#34 jspeed-meyers opened 2 years ago
0
Travis CI Leaked Logs

#33 jspeed-meyers opened 2 years ago
0
Python ctx package

#32 jspeed-meyers opened 2 years ago
2
Malicious Python Package

#31 jspeed-meyers opened 2 years ago
0
Deparment of Defense Common Access Card Malware - Does this count?

#30 jspeed-meyers closed 2 years ago
3
Malicious Rust Crate?

#29 jspeed-meyers opened 2 years ago
1
Is this one?

#28 jspeed-meyers opened 2 years ago
1
Attack on vue-js cli?

#27 jspeed-meyers opened 2 years ago
3
Adding some early 2022 reports to the list

#26 mgobbi289 closed 2 years ago
1
Wordpress themes plugins backdoored

#25 jspeed-meyers closed 2 years ago
0
npm packages colors and faker - infinite loop added

#24 jspeed-meyers closed 2 years ago
0
Adding some more late 2021 reports to the list

#23 mgobbi289 closed 2 years ago
5
Sorting all software compromises from the table

#22 mgobbi289 closed 2 years ago
5
New PyPI attacks discovered by Jfrog

#21 jspeed-meyers closed 2 years ago
0
Added some late 2021 reports that were missing from the list

#20 mgobbi289 closed 2 years ago
1
npm package coa and rc hijacked

#19 nasifimtiazohi closed 2 years ago
1
UAParser.js npm Package Supply Chain Attack

#18 nasifimtiazohi closed 2 years ago
2
Travis CI Security Flaw

#17 jspeed-meyers closed 2 years ago
0
vdoo/jfrog discovers attacks on pypi

#16 jspeed-meyers closed 2 years ago
0
Kaseya VSA Supply-Chain Ransomware Attack

#15 jspeed-meyers closed 2 years ago
0
PyPI cryptominer attacks discovered by Sonatype

#14 jspeed-meyers closed 2 years ago
0
codecov bash uploader security update

#13 jspeed-meyers closed 3 years ago
2
Backdoor attempt on PHP

#12 jspeed-meyers closed 3 years ago
1
Typosquatting attacks on Go

#11 jspeed-meyers closed 3 years ago
1
Dependency confusion attacks against Qentinel

#10 jspeed-meyers closed 3 years ago
1
Add RemindSupplyChainRisks attack on npm

#9 jspeed-meyers closed 3 years ago
1
Add npm confusion attack copycats

#8 jspeed-meyers closed 3 years ago
2
Add RemindSupplyChainRisks Attack(s?) on PyPI

#7 jspeed-meyers closed 3 years ago
1
Add dependency confusion attacks by Alex Birsan

#6 jspeed-meyers closed 3 years ago
1
Add quotes on the text description to ensure that a stray comma doesn't add an unintended column break

#5 prozacchiwawa closed 3 years ago
1
Added missing items from my softeware supply chain list

#4 jaxley closed 3 years ago
1
Adds the PYPI typosquatting attack 'request'

#3 vuduclyunitn closed 3 years ago
1
Add SolarWinds/Sunburst

#2 jorgeorchilles closed 3 years ago
2
Update to include Digitnotar Breach

#1 cabtex closed 3 years ago
2