-= Per source details. Do not edit below this line.=-
The OpenSSF Package Analysis project identified 'spacelift-webhook-receiver' @ 1.1.0 (npm) as malicious.
It is considered malicious because:
The package communicates with a domain associated with malicious activity.
The package executes one or more commands associated with malicious behavior.
{
"malicious-packages-origins": [
{
"sha256": "6bb9dc87c1669be92bee0be50a372fb87d1d92064bc4db257131d4323c2783e9",
"versions": [
"1.1.0"
],
"import_time": "2025-02-21T17:05:14.702453654Z",
"modified_time": "2025-02-21T16:50:14Z",
"source": "ossf-package-analysis"
}
]
}