{"id":"MAL-2024-10652","summary":"Malicious code in @ps-i18/i18-utils (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: ossf-package-analysis (262dc184a4159c2a1a26d9f3316074336c0ab00d4fae7ce82864cb736106ecb2)\nThe OpenSSF Package Analysis project identified '@ps-i18/i18-utils' @ 1.2.0 (npm) as malicious.\n\nIt is considered malicious because:\n\n- The package communicates with a domain associated with malicious activity.\n\n- The package executes one or more commands associated with malicious behavior.\n","modified":"2024-11-16T21:05:32Z","published":"2024-11-13T09:40:44Z","database_specific":{"malicious-packages-origins":[{"sha256":"262dc184a4159c2a1a26d9f3316074336c0ab00d4fae7ce82864cb736106ecb2","import_time":"2024-11-13T10:05:51.073287012Z","modified_time":"2024-11-13T09:45:34Z","source":"ossf-package-analysis","versions":["1.2.0"]},{"sha256":"938d0a254b9c19e3b3e3e91d43c5bff0b4e7cbbdec048d69c1d48fb433add95e","import_time":"2024-11-13T10:05:51.000443315Z","modified_time":"2024-11-13T09:40:44Z","source":"ossf-package-analysis","versions":["5.0.1"]},{"sha256":"a46f074e6a9e1a7f4f62a1ac5c7a90fae80936f14f58418093acc93da5eed0f6","import_time":"2024-11-16T21:04:58.437332347Z","modified_time":"2024-11-16T20:44:10Z","source":"ossf-package-analysis","versions":["1.2.1"]}]},"affected":[{"package":{"name":"@ps-i18/i18-utils","ecosystem":"npm","purl":"pkg:npm/%40ps-i18/i18-utils"},"versions":["1.2.0","5.0.1","1.2.1"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/@ps-i18/i18-utils/MAL-2024-10652.json"}}],"schema_version":"1.7.3","credits":[{"name":"OpenSSF: Package Analysis","contact":["https://github.com/ossf/package-analysis","https://openssf.slack.com/channels/package_analysis"],"type":"FINDER"}]}