Powered by AI + Aikido Research TeamAikido Threat Intelligence
Your earliest warning for supply chain threats. We expose malware and vulnerabilities in open-source ecosystems, within minutes.
Most Recent
@cap-js/hana is vulnerable to Denial of Service (DoS)
Upgrade the @cap-js/hana library to the patch version.
@cap-js/hana is vulnerable to Denial of Service (DoS)
Upgrade the @cap-js/hana library to the patch version.
strapi-plugin-comments is vulnerable to Cross-site Scripting (XSS)
Upgrade the strapi-plugin-comments library to the patch version.
strapi-plugin-comments is vulnerable to Cross-site Scripting (XSS)
Upgrade the strapi-plugin-comments library to the patch version.
github.com/external-secrets/external-secrets is vulnerable to Generation of Error Message Containing Sensitive Information
Upgrade the github.com/external-secrets/external-secrets library to a patch version.
github.com/external-secrets/external-secrets is vulnerable to Generation of Error Message Containing Sensitive Information
Upgrade the github.com/external-secrets/external-secrets library to a patch version.
taskiq-redis is vulnerable to Denial of Service (DoS)
Upgrade the taskiq-redis library to the patch version.
taskiq-redis is vulnerable to Denial of Service (DoS)
Upgrade the taskiq-redis library to the patch version.
openhands-sdk is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor
Upgrade the openhands-sdk library to the patch version.
openhands-sdk is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor
Upgrade the openhands-sdk library to the patch version.
directorytree/imapengine is vulnerable to Command injection
Upgrade the directorytree/imapengine library to the patch version.
directorytree/imapengine is vulnerable to Command injection
Upgrade the directorytree/imapengine library to the patch version.
eclipse-threadx.threadx is vulnerable to Incorrect Check of Function Return Value
Upgrade the eclipse-threadx.threadx library to the patch version.
eclipse-threadx.threadx is vulnerable to Incorrect Check of Function Return Value
Upgrade the eclipse-threadx.threadx library to the patch version.
@enspirit/elo is vulnerable to Code Injection
Upgrade the @enspirit/elo library to the patch version.
@enspirit/elo is vulnerable to Code Injection
Upgrade the @enspirit/elo library to the patch version.
sigs.k8s.io/azurefile-csi-driver is vulnerable to Dependency on Vulnerable Third-Party Component
Upgrade the sigs.k8s.io/azurefile-csi-driver library to a patch version.
sigs.k8s.io/azurefile-csi-driver is vulnerable to Dependency on Vulnerable Third-Party Component
Upgrade the sigs.k8s.io/azurefile-csi-driver library to a patch version.
@nx/workspace is vulnerable to Command Injection
Upgrade the @nx/workspace library to the patch version.
@nx/workspace is vulnerable to Command Injection
Upgrade the @nx/workspace library to the patch version.
High Profile Pre-CVE Found by Aikido Intel before public disclosure or CVE publication.
@enspirit/elo is vulnerable to Code Injection
Upgrade the @enspirit/elo library to the patch version.
@enspirit/elo is vulnerable to Code Injection
Upgrade the @enspirit/elo library to the patch version.
strapi-plugin-comments is vulnerable to Cross-site Scripting (XSS)
Upgrade the strapi-plugin-comments library to the patch version.
strapi-plugin-comments is vulnerable to Cross-site Scripting (XSS)
Upgrade the strapi-plugin-comments library to the patch version.
directorytree/imapengine is vulnerable to Command injection
Upgrade the directorytree/imapengine library to the patch version.
directorytree/imapengine is vulnerable to Command injection
Upgrade the directorytree/imapengine library to the patch version.
Search and Compare Health
of Open-Source Packages.
Make confident, secure choices for your next build.
Our Intel, Your Security
Open Source
Aikido Intel is available under AGPL license, developers may freely use, modify, and distribute the vulnerability & malware feed.
License the Intel Database
Want to integrate our threat intelligence into your product? Get access through our commercial API.
Get Secure Now
Secure your code, cloud, and runtime environments in one central system. Find and fix vulnerabilities automatically.
Get Secure Now
Secure your code, cloud, and runtime environments in one central system. Find and fix vulnerabilities automatically.
No credit card required | Scan results in 32secs.
SOC 2Compliant
ISO 27001Compliant