Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,901
Maven
5,000+
npm
3,631
NuGet
638
pip
3,245
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

382 advisories

Loading
Malicious Package in commander-js Critical
GHSA-2hqf-qqmq-pgpp was published for commander-js (npm) Sep 2, 2020
Malicious Package in rrgod Critical
GHSA-277p-xwpp-3jf7 was published for rrgod (npm) Sep 2, 2020
Malicious Package in portionfatty12 Critical
GHSA-p8fm-w787-x6x3 was published for portionfatty12 (npm) Sep 2, 2020
Malicious Package in 4equest Critical
GHSA-p33q-w45h-2hcj was published for 4equest (npm) Sep 2, 2020
Malicious Package in jajajejejiji Critical
GHSA-rggq-f2wf-m6cp was published for jajajejejiji (npm) Sep 2, 2020
Malicious Package in wepack-cli Critical
GHSA-fpw3-x4xq-6vxq was published for wepack-cli (npm) Sep 2, 2020
Malicious Package in asinc Critical
GHSA-87qw-7v97-w34r was published for asinc (npm) Sep 2, 2020
Malicious Package in asymc Critical
GHSA-x6ch-c6rv-f7wh was published for asymc (npm) Sep 2, 2020
Malicious Package in asynnc Critical
GHSA-5fm9-jmv7-fcx5 was published for asynnc (npm) Sep 2, 2020
Malicious Package in asyync Critical
GHSA-rm7c-x424-g2mw was published for asyync (npm) Sep 2, 2020
Malicious Package in aasync Critical
GHSA-9mjp-gv34-3jcf was published for aasync (npm) Sep 2, 2020
Malicious Package in asnc Critical
GHSA-2p99-6f47-8x9j was published for asnc (npm) Sep 2, 2020
Malicious Package in asycn Critical
GHSA-h26f-j4mv-84g7 was published for asycn (npm) Sep 2, 2020
Malicious Package in asnyc Critical
GHSA-v99v-xgjx-7m7g was published for asnyc (npm) Sep 2, 2020
Malicious Package in aysnc Critical
GHSA-gfjr-xqhm-qvv3 was published for aysnc (npm) Sep 2, 2020
Malicious Package in momen Critical
GHSA-h5vm-jhq7-w647 was published for momen (npm) Sep 2, 2020
Malicious Package in exprss Critical
GHSA-6qc7-jgq7-34rf was published for exprss (npm) Sep 2, 2020
Malicious Package in commnader Critical
GHSA-855m-jchh-9qjc was published for commnader (npm) Sep 2, 2020
Malicious Package in experss Critical
GHSA-mmph-wp49-r48h was published for experss (npm) Sep 2, 2020
Malicious Package in eact Critical
GHSA-pmgv-94f5-6w7w was published for eact (npm) Sep 2, 2020
Malicious Package in chak Critical
GHSA-9q9m-m2f6-jr5q was published for chak (npm) Sep 2, 2020
Malicious Package in calk Critical
GHSA-9mmw-3fmh-96g3 was published for calk (npm) Sep 2, 2020
Malicious Package in requestt Critical
GHSA-2563-83p7-f34p was published for requestt (npm) Sep 2, 2020
Malicious Package in requesst Critical
GHSA-6c37-2rw5-9j7x was published for requesst (npm) Sep 2, 2020
Malicious Package in requeest Critical
GHSA-8vj3-jgcf-77jv was published for requeest (npm) Sep 2, 2020
ProTip! Advisories are also available from the GraphQL API