-= Per source details. Do not edit below this line.=-
The package node-calculator-cf8c was found to contain malicious code.
The OpenSSF Package Analysis project identified 'node-calculator-cf8c' @ 2.1.2 (npm) as malicious.
It is considered malicious because:
The package communicates with a domain associated with malicious activity.
The package executes one or more commands associated with malicious behavior.
{
"malicious-packages-origins": [
{
"versions": [
"2.1.2"
],
"sha256": "c9c84dee863fae35e3837b12bae394f4762d2ed613ce10bf6cef759c45533c66",
"modified_time": "2025-11-19T13:58:04Z",
"source": "ossf-package-analysis",
"import_time": "2025-11-19T14:07:21.182176704Z"
},
{
"sha256": "4da96ce055040828362e8a000e3ad2e1a1647b7d3faa0c4383c260d6044bef7d",
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "SEMVER"
}
],
"modified_time": "2025-11-24T15:39:21Z",
"source": "amazon-inspector",
"import_time": "2025-11-24T16:07:30.654325408Z"
}
]
}