Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,285
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,741
NuGet
668
pip
3,422
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

382 advisories

Loading
Malicious Package in ripmed160 Critical
GHSA-gmjp-776j-2394 was published for ripmed160 (npm) Sep 3, 2020
Malicious Package in riped160 Critical
GHSA-rwcq-qpm6-7867 was published for riped160 (npm) Sep 3, 2020
Malicious Package in rceat Critical
GHSA-7w7c-867m-4mqc was published for rceat (npm) Sep 3, 2020
Malicious Package in path-to-regxep Critical
GHSA-f7gc-6hcj-wc42 was published for path-to-regxep (npm) Sep 3, 2020
Malicious Package in hw-trnasport-u2f Critical
GHSA-4363-x42f-xph6 was published for hw-trnasport-u2f (npm) Sep 3, 2020
Malicious Package in hdkye Critical
GHSA-8pwx-j4r6-5v38 was published for hdkye (npm) Sep 3, 2020
Malicious Package in hdeky Critical
GHSA-255r-pghp-r5wh was published for hdeky (npm) Sep 3, 2020
Malicious Package in fs-extar Critical
GHSA-435c-qcpm-wjw5 was published for fs-extar (npm) Sep 3, 2020
Malicious Package in ecuvre Critical
GHSA-cgvm-rvfv-c92r was published for ecuvre (npm) Sep 3, 2020
Malicious Package in dhkey Critical
GHSA-qxrj-x7rm-2h49 was published for dhkey (npm) Sep 3, 2020
Malicious Package in ecruve Critical
GHSA-fpf2-pr3j-4cm3 was published for ecruve (npm) Sep 3, 2020
Malicious Package in degbu Critical
GHSA-xr3g-4gg5-w3wq was published for degbu (npm) Sep 3, 2020
Malicious Package in cxt Critical
GHSA-fpgg-r39h-3x5x was published for cxt (npm) Sep 3, 2020
Malicious Package in rpc-websocket Critical
GHSA-x87g-rgrh-r6g3 was published for rpc-websocket (npm) Sep 3, 2020
Malicious Package in malicious-do-not-install Critical
GHSA-6879-xr95-5gf4 was published for malicious-do-not-install (npm) Sep 3, 2020
Malicious Package in leetlog Critical
GHSA-gfm8-g3vm-53jh was published for leetlog (npm) Sep 3, 2020
Malicious Package in maybemaliciouspackage Critical
GHSA-m9r7-q9fc-qwx5 was published for maybemaliciouspackage (npm) Sep 3, 2020
Malicious Package in my-very-own-package Critical
GHSA-crr2-ph72-c52g was published for my-very-own-package (npm) Sep 3, 2020
Malicious Package in only-test-not-install Critical
GHSA-g9wf-393q-4w38 was published for only-test-not-install (npm) Sep 3, 2020
Malicious Package in ali-contributor Critical
GHSA-h3m2-h22h-695r was published for ali-contributor (npm) Sep 3, 2020
Malicious Package in ali-contributors Critical
GHSA-8m5v-f2wp-wqr9 was published for ali-contributors (npm) Sep 3, 2020
Malicious Package in alico Critical
GHSA-jfx5-7mr2-g8hg was published for alico (npm) Sep 3, 2020
Malicious Package in alipayjsapi Critical
GHSA-rjhc-w3fj-j6x9 was published for alipayjsapi (npm) Sep 3, 2020
Malicious Package in antd-cloud Critical
GHSA-j4vm-hg8g-g9qv was published for antd-cloud (npm) Sep 3, 2020
Malicious Package in appx-compiler Critical
GHSA-8q2c-2396-hf7j was published for appx-compiler (npm) Sep 3, 2020
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database