MAL-2023-1318
See a problem?- Import Source
- https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/testforconfusion/MAL-2023-1318.json
- JSON Data
- https://api.osv.dev/v1/vulns/MAL-2023-1318
- Aliases
-
- SNYK-JS-TESTFORCONFUSION-3336111
- Published
- 2023-04-29T03:50:56Z
- Modified
- 2024-06-28T03:14:42.378462Z
- Summary
- Malicious code in testforconfusion (npm)
- Details
-
-= Per source details. Do not edit below this line.=-
Source: ossf-package-analysis (0463d945d1cd3398ce2594034fd52775ac94fe411f1cc645f88f757522abfc1b)
The OpenSSF Package Analysis project identified 'testforconfusion' @ 1.1.0 (npm) as malicious.
It is considered malicious because: - The package communicates with a domain associated with malicious activity.
- Database specific
{ "malicious-packages-origins": [ { "sha256": "0463d945d1cd3398ce2594034fd52775ac94fe411f1cc645f88f757522abfc1b", "import_time": "2023-08-10T06:15:15.745081648Z", "versions": [ "1.1.0" ], "source": "ossf-package-analysis", "modified_time": "2023-04-29T03:50:56.705238565Z" }, { "sha256": "563d87949fafdda8afd41796bb189a77596987aac326518383a2a692239e2cad", "import_time": "2023-08-10T06:15:15.990989619Z", "versions": [ "1.1.1" ], "source": "ossf-package-analysis", "modified_time": "2023-04-29T03:51:48.960889207Z" }, { "sha256": "72e1b18d924ce82337fadf2d687c8e3bceb3fe6ff7734036a1b779a02ad42373", "import_time": "2024-06-28T02:44:58.801192174Z", "versions": [ "1.1.0", "1.1.1", "1.0.0" ], "id": "RLMA-2024-01870", "source": "reversing-labs", "modified_time": "2024-06-25T13:03:49Z" } ] }- References
- Credits
-
-
- OpenSSF: Package Analysis - FINDER
-
- ReversingLabs - FINDER
-
Affected packages
npm / testforconfusion
Package
- Name
- testforconfusion
- View open source insights on deps.dev
- Purl
- pkg:npm/testforconfusion