MAL-2025-700

See a problem?
Import Source
https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/whaletail/MAL-2025-700.json
JSON Data
https://api.osv.dev/v1/vulns/MAL-2025-700
Published
2025-01-30T16:55:51Z
Modified
2025-03-03T15:08:01Z
Summary
Malicious code in whaletail (npm)
Details

The package communicates with a domain associated with malicious activity.


-= Per source details. Do not edit below this line.=-

Database specific
{
    "malicious-packages-origins": [
        {
            "sha256": "40bb1bbcb0d9187e9af943e4d7ef342522ef184eb559c9257e7e0aa017d42be0",
            "id": "RLMA-2025-01185",
            "import_time": "2025-03-03T15:07:12.58907288Z",
            "modified_time": "2025-03-03T13:43:44Z",
            "versions": [
                "1.0.0"
            ],
            "source": "reversing-labs"
        }
    ]
}
References
Credits

Affected packages

npm / whaletail

Package

Affected ranges

Affected versions

1.*
1.0.0

Database specific

source
"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/whaletail/MAL-2025-700.json"