issues
search
ossf
/
malicious-packages
A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerability (OSV) format.
Apache License 2.0
210
stars
19
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Bump github.com/aws/aws-sdk-go from 1.51.26 to 1.53.5
#495
dependabot[bot]
closed
2 months ago
1
Bump github.com/aws/aws-sdk-go from 1.51.26 to 1.53.4
#494
dependabot[bot]
closed
2 months ago
1
Bump actions/checkout from 4.1.3 to 4.1.6
#493
dependabot[bot]
closed
1 month ago
1
Bump github.com/aws/aws-sdk-go from 1.51.26 to 1.53.3
#492
dependabot[bot]
closed
2 months ago
1
Bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.53.1 to 1.54.1
#491
dependabot[bot]
closed
2 months ago
1
Bump github.com/aws/aws-sdk-go from 1.51.26 to 1.53.2
#490
dependabot[bot]
closed
2 months ago
1
Bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.53.1 to 1.54.0
#489
dependabot[bot]
closed
2 months ago
1
Bump cloud.google.com/go/storage from 1.40.0 to 1.41.0
#488
dependabot[bot]
closed
1 month ago
1
Add an automated check to ensure package reports are never removed.
#487
calebbrown
opened
2 months ago
0
Bump github/codeql-action from 3.25.0 to 3.25.5
#486
dependabot[bot]
closed
2 months ago
1
Bump github.com/aws/aws-sdk-go from 1.51.26 to 1.53.0
#485
dependabot[bot]
closed
2 months ago
1
Bump github.com/aws/aws-sdk-go from 1.51.26 to 1.52.6
#484
dependabot[bot]
closed
2 months ago
1
Bump ossf/scorecard-action from 2.3.1 to 2.3.3
#483
dependabot[bot]
closed
1 month ago
1
Revert "Add support for multiple prefixes per source."
#482
oliverchang
closed
2 months ago
2
Bump github.com/google/osv-scanner from 1.6.1 to 1.7.3
#481
dependabot[bot]
closed
1 month ago
1
Bump github.com/aws/aws-sdk-go from 1.51.26 to 1.52.5
#480
dependabot[bot]
closed
2 months ago
1
Bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.53.1 to 1.53.2
#479
dependabot[bot]
closed
2 months ago
1
Add support for multiple prefixes per source.
#478
calebbrown
closed
2 months ago
1
Improve package name handling and remove self refs.
#477
calebbrown
closed
2 months ago
0
Bump github.com/aws/aws-sdk-go from 1.51.26 to 1.52.4
#476
dependabot[bot]
closed
2 months ago
1
Bump golangci/golangci-lint-action from 4.0.0 to 6.0.1
#475
dependabot[bot]
closed
1 month ago
1
Bump github/codeql-action from 3.25.0 to 3.25.4
#474
dependabot[bot]
closed
2 months ago
1
Bump actions/checkout from 4.1.3 to 4.1.5
#473
dependabot[bot]
closed
2 months ago
1
Bump golangci/golangci-lint-action from 4.0.0 to 6.0.0
#472
dependabot[bot]
closed
2 months ago
1
Bump github.com/aws/aws-sdk-go from 1.51.26 to 1.52.3
#471
dependabot[bot]
closed
2 months ago
1
Bump golangci/golangci-lint-action from 4.0.0 to 5.3.0
#470
dependabot[bot]
closed
2 months ago
1
Bump github.com/aws/aws-sdk-go from 1.51.26 to 1.52.2
#469
dependabot[bot]
closed
2 months ago
1
Bump github.com/aws/aws-sdk-go from 1.51.26 to 1.52.1
#468
dependabot[bot]
closed
2 months ago
1
Add report for hw-transition-animation
#467
lukehinds
closed
2 months ago
3
Bump github.com/aws/aws-sdk-go from 1.51.26 to 1.52.0
#466
dependabot[bot]
closed
2 months ago
1
Bump actions/setup-go from 5.0.0 to 5.0.1
#465
dependabot[bot]
closed
1 month ago
1
Bump github.com/aws/aws-sdk-go from 1.51.26 to 1.51.32
#464
dependabot[bot]
closed
2 months ago
1
Bump the version of osv-schema to pick up the last_affected support for ghsa
#463
calebbrown
closed
2 months ago
0
Bump github.com/aws/aws-sdk-go from 1.51.26 to 1.51.31
#462
dependabot[bot]
closed
2 months ago
1
Bump golangci/golangci-lint-action from 4.0.0 to 5.1.0
#461
dependabot[bot]
closed
2 months ago
1
Bump github.com/aws/aws-sdk-go from 1.51.26 to 1.51.30
#460
dependabot[bot]
closed
2 months ago
1
Update MAL-2023-8697.json
#459
oliverchang
closed
2 months ago
0
Ranges on MAL-2023-8697 not updated to reflect GHSA
#458
oliverchang
closed
2 months ago
2
Bump github/codeql-action from 3.25.0 to 3.25.3
#457
dependabot[bot]
closed
2 months ago
1
Bump github.com/aws/aws-sdk-go from 1.51.26 to 1.51.29
#456
dependabot[bot]
closed
2 months ago
1
Bump golangci/golangci-lint-action from 4.0.0 to 5.0.0
#455
dependabot[bot]
closed
2 months ago
1
Bump github.com/aws/aws-sdk-go from 1.51.26 to 1.51.28
#454
dependabot[bot]
closed
2 months ago
1
Bump github.com/aws/aws-sdk-go from 1.51.26 to 1.51.27
#453
dependabot[bot]
closed
3 months ago
1
Bump actions/checkout from 4.1.3 to 4.1.4
#452
dependabot[bot]
closed
2 months ago
1
Bump github/codeql-action from 3.25.0 to 3.25.2
#451
dependabot[bot]
closed
2 months ago
1
Bump github.com/aws/aws-sdk-go from 1.51.22 to 1.51.26
#450
dependabot[bot]
closed
3 months ago
0
Bump actions/upload-artifact from 4.3.1 to 4.3.3
#449
dependabot[bot]
closed
3 months ago
0
Bump actions/checkout from 4.1.2 to 4.1.3
#448
dependabot[bot]
closed
3 months ago
1
Bump github.com/aws/aws-sdk-go from 1.51.22 to 1.51.25
#447
dependabot[bot]
closed
3 months ago
2
Bump github.com/aws/aws-sdk-go from 1.51.22 to 1.51.24
#446
dependabot[bot]
closed
3 months ago
1
Previous
Next