-= Per source details. Do not edit below this line.=-
The package lightweight-charts-4.1 was found to contain malicious code.
The OpenSSF Package Analysis project identified 'lightweight-charts-4.1' @ 11000.0.18 (npm) as malicious.
It is considered malicious because:
The package communicates with a domain associated with malicious activity.
The package executes one or more commands associated with malicious behavior.
{
"malicious-packages-origins": [
{
"versions": [
"1000.0.1"
],
"sha256": "04732e60b86bae0e7ee9e80b40fd0dae9c034f2c26f0da66c80123870235912e",
"modified_time": "2026-04-16T17:35:59Z",
"source": "ossf-package-analysis",
"import_time": "2026-04-16T18:30:52.435496486Z"
},
{
"versions": [
"11000.0.18"
],
"sha256": "3bf5f9054bf59235c7406b076fed3f65c71c616f5c6f9a044b320f1376d793e8",
"modified_time": "2026-04-18T09:51:23Z",
"source": "ossf-package-analysis",
"import_time": "2026-04-18T10:18:46.05699261Z"
},
{
"versions": [
"1000.0.1",
"11000.0.18"
],
"sha256": "1f7a7bcf5678b42c2da20ad8e444066092ac3a9c17a6c8867a034717d1d8c344",
"modified_time": "2026-04-23T20:43:56Z",
"source": "amazon-inspector",
"import_time": "2026-04-23T20:48:59.708117397Z"
}
]
}