Lucene search
GoogleOSV:MAL-2024-1659HistoryJun 22, 2024 - 10:19 a.m.
Malicious code in openstad-component-forms (npm)
2024-06-2210:19:20
Google
osv.dev
2
openssf project
malicious package
npm
security threat
7.1 High
AI Score
Confidence
High
-= Per source details. Do not edit below this line.=-
Source: ossf-package-analysis (ce99b034a6f67b0bd613755012e00352d254a5b438c7d65a687a2e2e2458cd7e)
The OpenSSF Package Analysis project identified βopenstad-component-formsβ @ 1.0.0 (npm) as malicious.
It is considered malicious because:
- The package communicates with a domain associated with malicious activity.
| CPE | Name | Operator | Version |
|---|---|---|---|
| openstad-component-forms | eq | 1.0.0 |
7.1 High
AI Score
Confidence
High