MAL-2024-8938

See a problem?
Import Source
https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/@energysolutions/mylib/MAL-2024-8938.json
JSON Data
https://api.osv.dev/v1/vulns/MAL-2024-8938
Published
2024-09-20T19:29:25Z
Modified
2024-09-26T23:06:19Z
Summary
Malicious code in @energysolutions/mylib (npm)
Details

-= Per source details. Do not edit below this line.=-

Source: ossf-package-analysis (08f12d3c3e2e99f5bcec121d93fe4ece6a29ff57478e2e93e0cff0d4309832ac)

The OpenSSF Package Analysis project identified '@energysolutions/mylib' @ 999999999.999999.999999 (npm) as malicious.

It is considered malicious because:

  • The package communicates with a domain associated with malicious activity.
References
Credits

Affected packages

npm / @energysolutions/mylib

Package

Name
@energysolutions/mylib
View open source insights on deps.dev
Purl
pkg:npm/%40energysolutions/mylib

Affected ranges

Affected versions

99.*

99.9.3
99.9.7
99.9.9

999.*

999.99.99

9998.*

9998.998.998
9998.999.999

99999.*

99999.99999.9999

9999999.*

9999999.999999.999999

99999999.*

99999999.999999.999999

999999999.*

999999999.999999.999999