Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,504
Maven
5,000+
npm
4,149
NuGet
735
pip
3,949
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

397 advisories

Loading
Malicious Package in calk Critical
GHSA-9mmw-3fmh-96g3 was published for calk (npm) Sep 2, 2020
Malicious Package in chak Critical
GHSA-9q9m-m2f6-jr5q was published for chak (npm) Sep 2, 2020
Malicious Package in eact Critical
GHSA-pmgv-94f5-6w7w was published for eact (npm) Sep 2, 2020
Malicious Package in experss Critical
GHSA-mmph-wp49-r48h was published for experss (npm) Sep 2, 2020
Malicious Package in commnader Critical
GHSA-855m-jchh-9qjc was published for commnader (npm) Sep 2, 2020
Malicious Package in exprss Critical
GHSA-6qc7-jgq7-34rf was published for exprss (npm) Sep 2, 2020
Malicious Package in momen Critical
GHSA-h5vm-jhq7-w647 was published for momen (npm) Sep 2, 2020
Malicious Package in aysnc Critical
GHSA-gfjr-xqhm-qvv3 was published for aysnc (npm) Sep 2, 2020
Malicious Package in asnyc Critical
GHSA-v99v-xgjx-7m7g was published for asnyc (npm) Sep 2, 2020
Malicious Package in asycn Critical
GHSA-h26f-j4mv-84g7 was published for asycn (npm) Sep 2, 2020
Malicious Package in asnc Critical
GHSA-2p99-6f47-8x9j was published for asnc (npm) Sep 2, 2020
Malicious Package in aasync Critical
GHSA-9mjp-gv34-3jcf was published for aasync (npm) Sep 2, 2020
Malicious Package in asyync Critical
GHSA-rm7c-x424-g2mw was published for asyync (npm) Sep 2, 2020
Malicious Package in asynnc Critical
GHSA-5fm9-jmv7-fcx5 was published for asynnc (npm) Sep 2, 2020
Malicious Package in asymc Critical
GHSA-x6ch-c6rv-f7wh was published for asymc (npm) Sep 2, 2020
Malicious Package in asinc Critical
GHSA-87qw-7v97-w34r was published for asinc (npm) Sep 2, 2020
Malicious Package in wepack-cli Critical
GHSA-fpw3-x4xq-6vxq was published for wepack-cli (npm) Sep 2, 2020
Malicious Package in jajajejejiji Critical
GHSA-rggq-f2wf-m6cp was published for jajajejejiji (npm) Sep 2, 2020
Malicious Package in 4equest Critical
GHSA-p33q-w45h-2hcj was published for 4equest (npm) Sep 2, 2020
Malicious Package in portionfatty12 Critical
GHSA-p8fm-w787-x6x3 was published for portionfatty12 (npm) Sep 2, 2020
Malicious Package in rrgod Critical
GHSA-277p-xwpp-3jf7 was published for rrgod (npm) Sep 2, 2020
Malicious Package in commander-js Critical
GHSA-2hqf-qqmq-pgpp was published for commander-js (npm) Sep 2, 2020
Entropy Backdoor in text-qrcode High
GHSA-h5vj-f7r9-w564 was published for text-qrcode (npm) Sep 1, 2020
Malicious Package in flatmap-stream Critical
GHSA-9x64-5r7x-2q53 was published for flatmap-stream (npm) Sep 1, 2020
Malicious Package in foever Critical
GHSA-j3qq-qvc8-c6g7 was published for foever (npm) Sep 1, 2020
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database