{"id":"MAL-2023-1092","summary":"Malicious code in @n9xcnr5test/n9xcnr5 (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: ossf-package-analysis (98235bbf40ea66c28973775cba8ead37bb4dc1d8999e5ebf02eb3157d4ba74be)\nThe OpenSSF Package Analysis project identified '@n9xcnr5test/n9xcnr5' @ 2001.0.0 (npm) as malicious.\n\nIt is considered malicious because:\n- The package communicates with a domain associated with malicious activity.\n","modified":"2023-08-10T06:17:47Z","published":"2023-08-05T11:41:42Z","database_specific":{"malicious-packages-origins":[{"versions":["2001.0.0"],"modified_time":"2023-08-05T11:41:42.042039499Z","source":"ossf-package-analysis","import_time":"2023-08-10T06:16:53.974745844Z","sha256":"98235bbf40ea66c28973775cba8ead37bb4dc1d8999e5ebf02eb3157d4ba74be"},{"versions":["2002.0.0"],"modified_time":"2023-08-05T11:48:11.762336944Z","source":"ossf-package-analysis","import_time":"2023-08-10T06:16:54.245975866Z","sha256":"a8c3586d986e52301e6177c40d97ed2b2b16ebb803cae4f17321e290e0d666a8"}]},"affected":[{"package":{"name":"@n9xcnr5test/n9xcnr5","ecosystem":"npm","purl":"pkg:npm/%40n9xcnr5test/n9xcnr5"},"versions":["2001.0.0","2002.0.0"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/@n9xcnr5test/n9xcnr5/MAL-2023-1092.json"}}],"schema_version":"1.7.3","credits":[{"name":"OpenSSF: Package Analysis","contact":["https://github.com/ossf/package-analysis","https://openssf.slack.com/channels/package_analysis"],"type":"FINDER"}]}