Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

26,868 advisories

Loading
Malicious Package in donotinstallthis Critical
GHSA-73hr-6785-f5p8 was published for donotinstallthis (npm) Sep 2, 2020
Malicious Package in destroyer-of-worlds Critical
GHSA-w3f3-4j22-2v3p was published for destroyer-of-worlds (npm) Sep 2, 2020
Malicious Package in reqest Critical
GHSA-hg5q-rj62-c43g was published for reqest (npm) Sep 2, 2020
Malicious Package in saync Critical
GHSA-pm9v-325f-5g74 was published for saync (npm) Sep 2, 2020
Malicious Package in bowee Critical
GHSA-wgvj-6v57-wjh3 was published for bowee (npm) Sep 2, 2020
Malicious Package in whiteproject Critical
GHSA-8j7x-pr59-m5h8 was published for whiteproject (npm) Sep 2, 2020
Malicious Package in bowe Critical
GHSA-xmmp-hrmx-x5g7 was published for bowe (npm) Sep 2, 2020
Malicious Package in browserift Critical
GHSA-43vf-2x6g-p2m5 was published for browserift (npm) Sep 2, 2020
Malicious Package in colro-name Critical
GHSA-jp9g-5x75-ccp8 was published for colro-name (npm) Sep 2, 2020
Malicious Package in colour-string Critical
GHSA-8mmf-qp7j-2w24 was published for colour-string (npm) Sep 2, 2020
Malicious Package in froever Critical
GHSA-2r8f-2665-3gxq was published for froever (npm) Sep 2, 2020
Malicious Package in hulp Critical
GHSA-fqw7-8v6m-2f86 was published for hulp (npm) Sep 2, 2020
Malicious Package in jqeury Critical
GHSA-4964-cjrr-jg97 was published for jqeury (npm) Sep 2, 2020
Malicious Package in jquerz Critical
GHSA-c6f3-3c98-2j2f was published for jquerz (npm) Sep 2, 2020
Malicious Package in logsymbles Critical
GHSA-vcg5-9xw6-r56c was published for logsymbles (npm) Sep 2, 2020
Malicious Package in require-ports Critical
GHSA-qj3g-wfr7-3cv7 was published for require-ports (npm) Sep 2, 2020
Malicious Package in tensorplow Critical
GHSA-m2fp-c79h-rr79 was published for tensorplow (npm) Sep 2, 2020
Malicious Package in uglyfi-js Critical
GHSA-9xww-fwh9-95c5 was published for uglyfi-js (npm) Sep 2, 2020
Malicious Package in yeoman-genrator Critical
GHSA-fm7r-2pr7-rw2p was published for yeoman-genrator (npm) Sep 2, 2020
Malicious Package in rimrafall Critical
GHSA-8hq2-fcqm-39hq was published for rimrafall (npm) Sep 2, 2020
Malicious Package in kraken-api Critical
GHSA-fgfj-rj24-mj7q was published for kraken-api (npm) Sep 2, 2020
Malicious Package in font-scrubber Critical
GHSA-65j7-66p7-9xgf was published for font-scrubber (npm) Sep 2, 2020
Malicious Package in ngx-pica Critical
GHSA-76wf-2xcf-6wmx was published for ngx-pica (npm) Sep 3, 2020
Malicious Package in pm-controls Critical
GHSA-84qj-9qf2-q92r was published for pm-controls (npm) Sep 3, 2020
Malicious Package in jekyll-for-github-projects Critical
GHSA-j5qg-46p9-w2rp was published for jekyll-for-github-projects (npm) Sep 3, 2020
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database