THREATPKG
SYNC STALE
Supply-chain threat intelligence
Incident detail
Risk score
92
AI summary
Indexed incident for rookie-security-test-pkg (npm).
Description
-= Per source details. Do not edit below this line.=-
Source: ossf-package-analysis (1af47f1485c4c5bd3c6ee3cb7330781c1892ebc8bea1c59b0a0045c49ab8c93d)
The OpenSSF Package Analysis project identified 'rookie-security-test-pkg' @ 1.0.0 (npm) as malicious.
It is considered malicious because:
The package communicates with a domain associated with malicious activity.
The package executes one or more commands associated with malicious behavior.
Technical details
Affected versions
<function fixed() { [native code] }
Indicators
- affected_version<function fixed() { [native code] }75%
Timeline
- Advisory published
- Indexed by ThreatPkg
Related incidents
- Malicious code in @aonunited/angular (npm)@aonunited/angular92
- Malicious code in align_rest_api (RubyGems)align_rest_api92
- Malicious code in imgmatrix-analysis (PyPI)imgmatrix-analysis92
- Malicious code in js-shared-modules (npm)js-shared-modules92
- Malicious code in @challenger6/vm-pattern-library (npm)@challenger6/vm-pattern-library92