The package communicates with a domain associated with malicious activity.
-= Per source details. Do not edit below this line.=-
The OpenSSF Package Analysis project identified 'sdk.babelhelpz' @ 5.0.3 (npm) as malicious.
It is considered malicious because:
The package communicates with a domain associated with malicious activity.
The package executes one or more commands associated with malicious behavior.
{ "malicious-packages-origins": [ { "source": "ossf-package-analysis", "import_time": "2025-07-01T17:05:53.182369155Z", "sha256": "8497538b37e6a5726500890d8974124b992d9c6b85b27f2408bca1a77aa6572b", "versions": [ "5.0.3" ], "modified_time": "2025-07-01T16:46:29Z" } ] }