Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,809
Erlang
36
GitHub Actions
31
Go
2,393
Maven
5,000+
npm
4,026
NuGet
720
pip
3,818
Pub
12
RubyGems
932
Rust
988
Swift
38
Unreviewed advisories
All unreviewed
5,000+

387 advisories

Loading
Malicious Package in only-test-not-install Critical
GHSA-g9wf-393q-4w38 was published for only-test-not-install (npm) Sep 3, 2020
Malicious Package in motiv.scss Critical
GHSA-2vqq-jgxx-fxjc was published for motiv.scss (npm) Sep 11, 2020
Malicious Package in epress Critical
GHSA-vf8q-pw7h-r2x2 was published for epress (npm) Sep 11, 2020
Malicious Package in shrugging-logging Critical
GHSA-qv78-398w-cxp7 was published for shrugging-logging (npm) Sep 11, 2020
Malicious Package in angluar-cli Critical
GHSA-8mm3-2mcj-cx6r was published for angluar-cli (npm) Sep 11, 2020
Malicious Package in requeest Critical
GHSA-8vj3-jgcf-77jv was published for requeest (npm) Sep 2, 2020
Malicious Package in requet Critical
GHSA-h44f-769q-j6px was published for requet (npm) Sep 2, 2020
Malicious Package in rqeuest Critical
GHSA-pj97-j597-ppm7 was published for rqeuest (npm) Sep 2, 2020
Malicious Package in aasync Critical
GHSA-9mjp-gv34-3jcf was published for aasync (npm) Sep 2, 2020
Malicious Package in chak Critical
GHSA-9q9m-m2f6-jr5q was published for chak (npm) Sep 2, 2020
Malicious Package in logsymbles Critical
GHSA-vcg5-9xw6-r56c was published for logsymbles (npm) Sep 2, 2020
Malicious Package in discord_debug_log Critical
GHSA-5x8q-gj67-rhf2 was published for discord_debug_log (npm) Sep 2, 2020
Malicious Package in bowee Critical
GHSA-wgvj-6v57-wjh3 was published for bowee (npm) Sep 2, 2020
Malicious Package in boogeyman Critical
GHSA-9hc2-w9gg-q6jw was published for boogeyman (npm) Sep 1, 2020
Malicious Package in regenraotr Critical
GHSA-5x7p-gm79-383m was published for regenraotr (npm) Sep 1, 2020
Malicious Package in awesome_react_utility Critical
GHSA-m25q-fwg4-9v2p was published for awesome_react_utility (npm) Sep 1, 2020
Malicious Package in getcookies Critical
GHSA-3cjv-4phw-gvvv was published for getcookies (npm) Sep 1, 2020
Malicious Package in dynamo-schema Critical
GHSA-vp8g-53fw-r9f2 was published for dynamo-schema (npm) Sep 1, 2020
Malicious Package in impala Critical
GHSA-92px-q4w8-hrr5 was published for impala (npm) Sep 1, 2020
Malicious Package in singale Critical
GHSA-crfh-jmv2-2f9v was published for singale (npm) Sep 3, 2020
Malicious Package in dhkey Critical
GHSA-qxrj-x7rm-2h49 was published for dhkey (npm) Sep 3, 2020
Malicious Package in hdeky Critical
GHSA-255r-pghp-r5wh was published for hdeky (npm) Sep 3, 2020
Malicious Package in commanedr Critical
GHSA-xcgx-27q5-7634 was published for commanedr (npm) Sep 3, 2020
Malicious Package in coinpayment Critical
GHSA-3h99-v4qw-p2h5 was published for coinpayment (npm) Sep 3, 2020
Malicious Package in we3b Critical
GHSA-36r8-9qq7-mh43 was published for we3b (npm) Sep 3, 2020
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database