-= Per source details. Do not edit below this line.=-
The OpenSSF Package Analysis project identified 'fake-package-apache-with-copyleft-dep' @ 4.0.0 (npm) as malicious.
It is considered malicious because:
The package communicates with a domain associated with malicious activity.
The package executes one or more commands associated with malicious behavior.
{
"malicious-packages-origins": [
{
"sha256": "dccffa1d5f84a8476d98fd5eed5c0401aba753ef0916b506d1b8f9687029351d",
"versions": [
"4.0.0"
],
"import_time": "2024-07-06T17:04:38.67448211Z",
"modified_time": "2024-07-06T16:52:46Z",
"source": "ossf-package-analysis"
}
]
}