-= Per source details. Do not edit below this line.=-
The package mbed-js-ble was found to contain malicious code.
The OpenSSF Package Analysis project identified 'mbed-js-ble' @ 5.0.9 (npm) as malicious.
It is considered malicious because:
{
"malicious-packages-origins": [
{
"versions": [
"5.0.9"
],
"sha256": "d5154c4ee1e4408321e993d8157b8d63c05dccbc4f4c5a5474b36fc4590219b1",
"modified_time": "2025-11-02T20:00:51Z",
"source": "ossf-package-analysis",
"import_time": "2025-11-02T23:34:48.955083209Z"
},
{
"versions": [
"5.0.8",
"5.0.9"
],
"sha256": "46cbc9bfb6de04bcef9b700b14e7b05e13889f71d3fd11d9ba0281cc76d95f39",
"modified_time": "2025-11-03T18:59:00Z",
"source": "amazon-inspector",
"import_time": "2025-11-03T19:05:50.147701827Z"
}
]
}