THREATPKG
SYNC STALE
Supply-chain threat intelligence
Incident detail
Risk score
92
AI summary
Indexed incident for js-shared-modules (npm).
Description
The OpenSSF Package Analysis project identified 'js-shared-modules' @ 1.11.7 (npm) as malicious.
It is considered malicious because:
- The package communicates with a domain associated with malicious activity.
Technical details
Indicators
- affected version<function fixed() { [native code] }75%
Timeline
- Advisory published
- Indexed by ThreatPkg
Related incidents
- Malicious code in worker-build (npm)worker-build92
- Malicious code in ecto-corsair-whisper-6f3b9 (npm)ecto-corsair-whisper-6f3b992
- Malicious code in @tt-aem-tt4a/shared-components (npm)@tt-aem-tt4a/shared-components92
- Malicious code in @whatnot-web/www-legacy (npm)@whatnot-web/www-legacy92
- Malicious code in vite-tsconfig (npm)vite-tsconfig92