File tree Expand file tree Collapse file tree 2 files changed +32
-0
lines changed
Expand file tree Collapse file tree 2 files changed +32
-0
lines changed Original file line number Diff line number Diff line change 1+ ``` toml
2+ [advisory ]
3+ id = " RUSTSEC-0000-0000"
4+ package = " evm-units"
5+ date = " 2025-12-03"
6+ url = " https://blog.rust-lang.org/2025/12/03/crates.io-malicious-crates-evm-units-and-uniswap-utils/"
7+ references = [" https://socket.dev/blog/malicious-rust-crate-evm-units-serves-cross-platform-payloads"
8+ expect-deleted = true
9+
10+ [versions ]
11+ patched = []
12+ ```
13+
14+ # ` evm-units ` was removed from crates.io for malicious code
15+
16+ It appeared to be attempting to steal cryptocurrency.
Original file line number Diff line number Diff line change 1+ ``` toml
2+ [advisory ]
3+ id = " RUSTSEC-0000-0000"
4+ package = " uniswap-utils"
5+ date = " 2025-12-03"
6+ url = " https://blog.rust-lang.org/2025/12/03/crates.io-malicious-crates-evm-units-and-uniswap-utils/"
7+ references = [" https://socket.dev/blog/malicious-rust-crate-evm-units-serves-cross-platform-payloads"
8+ expect-deleted = true
9+
10+ [versions ]
11+ patched = []
12+ ```
13+
14+ # ` uniswap-utils ` was removed from crates.io for malicious code
15+
16+ It depended on the ` evm-units ` crate, which appeared to be attempting to steal cryptocurrency.
You can’t perform that action at this time.
0 commit comments