-= Per source details. Do not edit below this line.=-
The package @datatrain/passenger-v3 was found to contain malicious code.
The OpenSSF Package Analysis project identified '@datatrain/passenger-v3' @ 99.99.99 (npm) as malicious.
It is considered malicious because:
The package communicates with a domain associated with malicious activity.
The package executes one or more commands associated with malicious behavior.
{
"malicious-packages-origins": [
{
"sha256": "b9ddfc7b79c2b6ec028ceb57ce51ac4c99d20ef8752a4af45fe763ed2899490d",
"source": "ossf-package-analysis",
"import_time": "2026-05-15T13:08:45.806292469Z",
"modified_time": "2026-05-15T12:48:57Z",
"versions": [
"99.99.99"
]
},
{
"modified_time": "2026-05-19T16:47:48Z",
"source": "amazon-inspector",
"import_time": "2026-05-19T17:50:41.935572411Z",
"sha256": "8ff70d96169a200be30c83b3e37506f7abf2f377ed1d6dec8005269d98b58104",
"versions": [
"99.99.99"
]
}
]
}