-= Per source details. Do not edit below this line.=-
The package elf-stats-tinsel-sparkler-289 was found to contain malicious code.
The OpenSSF Package Analysis project identified 'elf-stats-tinsel-sparkler-289' @ 1.0.0 (npm) as malicious.
It is considered malicious because:
{
"malicious-packages-origins": [
{
"versions": [
"1.0.0"
],
"import_time": "2025-12-03T20:08:02.734262355Z",
"modified_time": "2025-12-03T19:38:32Z",
"sha256": "c63042efca4c769fab4af2c6acabbe6a9b7808cb9c125d056dce01b1717024e1",
"source": "ossf-package-analysis"
},
{
"versions": [
"1.0.0"
],
"import_time": "2025-12-05T20:39:35.958691998Z",
"modified_time": "2025-12-05T20:38:15Z",
"sha256": "b7b6b73c1a42f93c6d3a57c4b824e8bad5556ea6947672564bbb4cd6fc6c87d2",
"source": "amazon-inspector"
},
{
"versions": [
"1.0.0"
],
"id": "RLMA-2025-06323",
"modified_time": "2025-12-23T08:11:19Z",
"import_time": "2025-12-23T22:07:18.818463178Z",
"sha256": "dab74a67a0f0b662ea6b392e25a4f10e85fb086427a5bccb25facefabccfb9b5",
"source": "reversing-labs"
}
]
}