-= Per source details. Do not edit below this line.=-
The OpenSSF Package Analysis project identified 'cfa-react-components' @ 2.8.8 (npm) as malicious.
It is considered malicious because:
The package communicates with a domain associated with malicious activity.
The package executes one or more commands associated with malicious behavior.
{ "malicious-packages-origins": [ { "versions": [ "2.8.8" ], "modified_time": "2025-03-12T13:39:20Z", "source": "ossf-package-analysis", "sha256": "aac7ddc598f480a5c87bd28d65a6fc762b5c9ce46b72934eabe3760b49f11a36", "import_time": "2025-03-12T14:06:00.145345729Z" } ] }