MAL-2023-8639
See a problem?- Import Source
- https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/yetibarbar_plug/MAL-2023-8639.json
- JSON Data
- https://api.osv.dev/v1/vulns/MAL-2023-8639
- Published
- 2023-11-30T20:26:23Z
- Modified
- 2023-11-30T21:04:56Z
- Summary
- Malicious code in yetibarbar_plug (npm)
- Details
-
-= Per source details. Do not edit below this line.=-
Source: ossf-package-analysis (4c26573e1e915f00ad980599539d1a9a04737c0264c7a7366cf0b7a88a92df08)
The OpenSSF Package Analysis project identified 'yetibarbar_plug' @ 1.0.2 (npm) as malicious.
It is considered malicious because:
- The package communicates with a domain associated with malicious activity.
- Database specific
{ "malicious-packages-origins": [ { "sha256": "4c26573e1e915f00ad980599539d1a9a04737c0264c7a7366cf0b7a88a92df08", "import_time": "2023-11-30T20:33:39.546849018Z", "versions": [ "1.0.2" ], "source": "ossf-package-analysis", "modified_time": "2023-11-30T20:26:23Z" }, { "sha256": "3aadb7d7351faaa57b8c622c4546d5391a91c069a593de223fffaabbf64b5ae5", "import_time": "2023-11-30T21:04:35.1648583Z", "versions": [ "1.0.4" ], "source": "ossf-package-analysis", "modified_time": "2023-11-30T20:35:49Z" } ] }- References
-
- Credits
-
-
- OpenSSF: Package Analysis - FINDER
-
Affected packages
npm / yetibarbar_plug
Package
- Name
- yetibarbar_plug
- View open source insights on deps.dev
- Purl
- pkg:npm/yetibarbar_plug