issues
search
IQTLabs
/
software-supply-chain-compromises
A dataset of software supply chain compromises. Please help us maintain it!
Creative Commons Zero v1.0 Universal
126
stars
29
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
An Attack - But With No Known Victims, Yet
#41
jspeed-meyers
opened
2 years ago
0
Python Malware
#40
jspeed-meyers
opened
2 years ago
1
Chat Application Mimi
#39
jspeed-meyers
opened
2 years ago
1
PyPI Malware
#38
jspeed-meyers
opened
2 years ago
0
GitHub Clones with Malicious Code Added
#37
jspeed-meyers
opened
2 years ago
3
Some other OSS malware
#36
jspeed-meyers
opened
2 years ago
0
PyPI Malware
#35
jspeed-meyers
opened
2 years ago
0
See if Any Attacks from Reversing Labs Partial Dataset Are Missing and Should be Added
#34
jspeed-meyers
opened
2 years ago
0
Travis CI Leaked Logs
#33
jspeed-meyers
opened
2 years ago
0
Python ctx package
#32
jspeed-meyers
opened
2 years ago
2
Malicious Python Package
#31
jspeed-meyers
opened
2 years ago
0
Deparment of Defense Common Access Card Malware - Does this count?
#30
jspeed-meyers
closed
2 years ago
3
Malicious Rust Crate?
#29
jspeed-meyers
opened
2 years ago
1
Is this one?
#28
jspeed-meyers
opened
2 years ago
1
Attack on vue-js cli?
#27
jspeed-meyers
opened
2 years ago
3
Adding some early 2022 reports to the list
#26
mgobbi289
closed
2 years ago
1
Wordpress themes plugins backdoored
#25
jspeed-meyers
closed
2 years ago
0
npm packages colors and faker - infinite loop added
#24
jspeed-meyers
closed
2 years ago
0
Adding some more late 2021 reports to the list
#23
mgobbi289
closed
2 years ago
5
Sorting all software compromises from the table
#22
mgobbi289
closed
2 years ago
5
New PyPI attacks discovered by Jfrog
#21
jspeed-meyers
closed
2 years ago
0
Added some late 2021 reports that were missing from the list
#20
mgobbi289
closed
2 years ago
1
npm package coa and rc hijacked
#19
nasifimtiazohi
closed
2 years ago
1
UAParser.js npm Package Supply Chain Attack
#18
nasifimtiazohi
closed
2 years ago
2
Travis CI Security Flaw
#17
jspeed-meyers
closed
2 years ago
0
vdoo/jfrog discovers attacks on pypi
#16
jspeed-meyers
closed
2 years ago
0
Kaseya VSA Supply-Chain Ransomware Attack
#15
jspeed-meyers
closed
2 years ago
0
PyPI cryptominer attacks discovered by Sonatype
#14
jspeed-meyers
closed
2 years ago
0
codecov bash uploader security update
#13
jspeed-meyers
closed
3 years ago
2
Backdoor attempt on PHP
#12
jspeed-meyers
closed
3 years ago
1
Typosquatting attacks on Go
#11
jspeed-meyers
closed
3 years ago
1
Dependency confusion attacks against Qentinel
#10
jspeed-meyers
closed
3 years ago
1
Add RemindSupplyChainRisks attack on npm
#9
jspeed-meyers
closed
3 years ago
1
Add npm confusion attack copycats
#8
jspeed-meyers
closed
3 years ago
2
Add RemindSupplyChainRisks Attack(s?) on PyPI
#7
jspeed-meyers
closed
3 years ago
1
Add dependency confusion attacks by Alex Birsan
#6
jspeed-meyers
closed
3 years ago
1
Add quotes on the text description to ensure that a stray comma doesn't add an unintended column break
#5
prozacchiwawa
closed
3 years ago
1
Added missing items from my softeware supply chain list
#4
jaxley
closed
3 years ago
1
Adds the PYPI typosquatting attack 'request'
#3
vuduclyunitn
closed
3 years ago
1
Add SolarWinds/Sunburst
#2
jorgeorchilles
closed
3 years ago
2
Update to include Digitnotar Breach
#1
cabtex
closed
3 years ago
2