MAL-2023-1217
See a problem?- Import Source
- https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/javascript-appfabric-logger/MAL-2023-1217.json
- JSON Data
- https://api.osv.dev/v1/vulns/MAL-2023-1217
- Published
- 2023-06-03T11:30:49Z
- Modified
- 2023-08-10T06:17:48Z
- Summary
- Malicious code in javascript-appfabric-logger (npm)
- Details
-
-= Per source details. Do not edit below this line.=-
Source: ossf-package-analysis (9f8b7cd0cdd29ede135536b1e9ca802d8bfd2343e149fb7fd4ff7de38a4d1813)
The OpenSSF Package Analysis project identified 'javascript-appfabric-logger' @ 966.0.0 (npm) as malicious.
It is considered malicious because: - The package executes one or more commands associated with malicious behavior.
- Database specific
{ "malicious-packages-origins": [ { "sha256": "9f8b7cd0cdd29ede135536b1e9ca802d8bfd2343e149fb7fd4ff7de38a4d1813", "source": "ossf-package-analysis", "modified_time": "2023-06-03T11:41:13.688027356Z", "versions": [ "966.0.0" ], "import_time": "2023-08-10T06:17:19.975866431Z" }, { "sha256": "af1aa339fb09a23bd04917b26eb73ebc4594156d6be4e2b37ff1d5540e2065a3", "source": "ossf-package-analysis", "modified_time": "2023-06-03T11:30:49.227481907Z", "versions": [ "966.0.1" ], "import_time": "2023-08-10T06:17:19.766296176Z" }, { "sha256": "fa8545ab46a24f1bb2c51eddd7765c0da51d8b146b589f0f525827e510558f90", "source": "ossf-package-analysis", "modified_time": "2023-06-03T11:41:20.861217463Z", "versions": [ "966.0.3" ], "import_time": "2023-08-10T06:17:20.257280839Z" } ] }- References
-
- Credits
-
-
- OpenSSF: Package Analysis - FINDER
-
Affected packages
npm / javascript-appfabric-logger
Package
- Name
- javascript-appfabric-logger
- View open source insights on deps.dev
- Purl
- pkg:npm/javascript-appfabric-logger