-= Per source details. Do not edit below this line.=-
The OpenSSF Package Analysis project identified 'quickwinston' @ 3.19.3 (npm) as malicious.
It is considered malicious because:
The package communicates with a domain associated with malicious activity.
The package executes one or more commands associated with malicious behavior.
{
"malicious-packages-origins": [
{
"versions": [
"3.19.3"
],
"sha256": "304b4e430bff604f20121bc97398fa6ee18a25c16187d31b6553248bc54e63c7",
"modified_time": "2026-06-08T11:10:12Z",
"source": "ossf-package-analysis",
"import_time": "2026-06-09T12:03:47.503723127Z"
}
]
}