MAL-2024-1321

See a problem?

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/hw-transition-animation/MAL-2024-1321.json

JSON Data

https://api.osv.dev/v1/vulns/MAL-2024-1321

Published

2024-05-02T17:40:37Z

Modified

2024-05-02T17:40:37Z

Summary

Malicious code in hw-transition-animation (npm)

Details

The package hw-transition-animation (npm) version 66.6.9 contains malicious code. The malicious code is designed exfiltrate system information potentially for malicious purpose.

Database specific

{
    "malicious-packages-origins": null
}

References

Credits

- Stacklok: trustypkg.dev - FINDER
- - https://discord.com/invite/RkzVuTp3WK

Affected packages

npm / hw-transition-animation

Package

Name: hw-transition-animation; View open source insights on deps.dev
Purl: pkg:npm/hw-transition-animation

Affected ranges

Affected versions

66.*

66.6.9

Database specific

source

"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/hw-transition-animation/MAL-2024-1321.json"