MAL-2024-9305
See a problem?- Import Source
- https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/ts-calling-test-app/MAL-2024-9305.json
- JSON Data
- https://api.osv.dev/v1/vulns/MAL-2024-9305
- Published
- 2024-10-16T14:48:20Z
- Modified
- 2024-10-18T22:05:44Z
- Summary
- Malicious code in ts-calling-test-app (npm)
- Details
-
-= Per source details. Do not edit below this line.=-
Source: ossf-package-analysis (0db756d26a3007b10201297415dfaa2cf6315b37f9ef0b88fa32feac6aaf42bd)
The OpenSSF Package Analysis project identified 'ts-calling-test-app' @ 1.999.0 (npm) as malicious.
It is considered malicious because:
The package communicates with a domain associated with malicious activity.
The package executes one or more commands associated with malicious behavior.
- Database specific
{ "malicious-packages-origins": [ { "modified_time": "2024-10-16T14:48:20Z", "versions": [ "1.999.0" ], "import_time": "2024-10-16T15:05:36.309996011Z", "source": "ossf-package-analysis", "sha256": "0db756d26a3007b10201297415dfaa2cf6315b37f9ef0b88fa32feac6aaf42bd" }, { "modified_time": "2024-10-18T21:50:56Z", "versions": [ "2.999.0" ], "import_time": "2024-10-18T22:05:16.060546433Z", "source": "ossf-package-analysis", "sha256": "448a08718061d05804349f3c1542cfbcab14749f893d4c4ff8b03b5e2e8b95c2" }, { "modified_time": "2024-10-18T21:45:58Z", "versions": [ "1.0.0" ], "import_time": "2024-10-18T22:05:15.997044427Z", "source": "ossf-package-analysis", "sha256": "631bc03765134bd0839f4069656ba4de99439d94bb52d5af9d7e03bae0d7c82f" } ] }- References
-
- Credits
-
-
- OpenSSF: Package Analysis - FINDER
-
Affected packages
npm / ts-calling-test-app
Package
- Name
- ts-calling-test-app
- View open source insights on deps.dev
- Purl
- pkg:npm/ts-calling-test-app