-= Per source details. Do not edit below this line.=-
The package elf-stats-starlit-ribbon-255 was found to contain malicious code.
The OpenSSF Package Analysis project identified 'elf-stats-starlit-ribbon-255' @ 1.0.1 (npm) as malicious.
It is considered malicious because:
{
"malicious-packages-origins": [
{
"versions": [
"1.0.1"
],
"sha256": "bef0ccef87d7ce48e221062c23c6d5f822885eed6eb3d7b3b619b55c71a0101b",
"modified_time": "2025-12-03T15:38:17Z",
"source": "ossf-package-analysis",
"import_time": "2025-12-03T15:39:48.289720225Z"
},
{
"versions": [
"1.0.1"
],
"sha256": "ab737733063151f587ed67c238187c2c8832c3a5bead8f0140d93e58143a9742",
"modified_time": "2025-12-03T17:22:10Z",
"source": "amazon-inspector",
"import_time": "2025-12-03T17:40:21.306530611Z"
},
{
"versions": [
"1.0.0",
"1.0.1"
],
"sha256": "6bdf2f73d49552a00b82ef627ca847882d1fd4fd6bf6d028d5963ebc0bf03a91",
"modified_time": "2025-12-23T08:11:01Z",
"source": "reversing-labs",
"id": "RLMA-2025-06309",
"import_time": "2025-12-23T21:36:18.630317311Z"
}
]
}