The package communicates with a domain associated with malicious activity.
-= Per source details. Do not edit below this line.=-
The OpenSSF Package Analysis project identified 'msalv2' @ 99.0.9 (npm) as malicious.
It is considered malicious because:
The package communicates with a domain associated with malicious activity.
The package executes one or more commands associated with malicious behavior.
{
"malicious-packages-origins": [
{
"versions": [
"99.0.9"
],
"sha256": "cca3fbaf2aacbd857c8661a88233c1a756fd75c6f60d675a32374d9c95cc019e",
"modified_time": "2025-08-23T14:43:26Z",
"source": "ossf-package-analysis",
"import_time": "2025-08-23T15:05:14.65816108Z"
}
]
}