Lucene search
GoogleOSV:MAL-2024-1077HistoryMar 08, 2024 - 6:21 a.m.
Malicious code in @spectrocoin/sc-currencies (npm)
2024-03-0806:21:43
Google
osv.dev
4
malicious package
npm
domain communication
7.1 High
AI Score
Confidence
High
-= Per source details. Do not edit below this line.=-
Source: ossf-package-analysis (e25c79935b85d9e21d6f39b9f9d5b8d7472c19cd2e49dd4239a6f7298e96502f)
The OpenSSF Package Analysis project identified β@spectrocoin/sc-currenciesβ @ 9.9.99 (npm) as malicious.
It is considered malicious because:
- The package communicates with a domain associated with malicious activity.
| CPE | Name | Operator | Version |
|---|---|---|---|
| @spectrocoin/sc-currencies | eq | 9.9.99 | |
| @spectrocoin/sc-currencies | eq | 9.9.9 |
7.1 High
AI Score
Confidence
High