Malicious code added to 35k GitHub repos, leaking user environments

This page summarizes the projects mentioned and recommended in the original post on news.ycombinator.com
Serialization

InfluxDB
Our great sponsors
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • WorkOS - The modern identity platform for B2B SaaS
  • SaaSHub - Software Alternatives and Reviews
Our great sponsors

  • GUI-miner

    An easy to use GUI miner available for Windows, macOS and Linux

  • gui-miner

    Discontinued An easy to use GUI miner available for Windows, macOS and Linux [Moved to: https://github.com/scala-network/GUI-miner] (by stellitecoin)

    • and it's infected clone: https://github.com/stellitecoin/gui-miner

    GPG signed commits by the legitimate users do not contain the malware

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo

  • asn1

    Discontinued Asn.1 BER and DER encoding library for golang. [Moved to: https://github.com/Logicalis/asn1] (by promonlogicalis)

    • Some of them seem like old accounts, though, like this one: https://github.com/automagically, which supposedly added it to this repo: https://github.com/promonlogicalis/asn1/commits/master/asn1....

  • zcli

    Zerops command line utility

  • asn1

    • That commit was rewritten from https://github.com/Logicalis/asn1/commit/d60463189a563e49f19... which was signed, but is not in the fork.

  • WorkOS

    The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

    WorkOS logo
NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts