{"id":"MAL-2024-2001","summary":"Malicious code in commodities (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n","modified":"2024-10-24T01:01:55Z","published":"2024-06-25T12:34:07Z","database_specific":{"malicious-packages-origins":[{"id":"RLMA-2024-00622","source":"reversing-labs","import_time":"2024-06-28T02:42:27.693878002Z","modified_time":"2024-06-25T12:34:07Z","sha256":"2d87a96dd76669d67e53700f705c503adefab5d9f826eca46b49595d41c7100f","versions":["0.4.2"]},{"id":"RLUA-2024-06335","source":"reversing-labs","import_time":"2024-10-24T00:57:39.508844633Z","sha256":"9cf68f06265587800e6d4f38407bf6b69450c3e08a584433125995d9a7b23a48","modified_time":"2024-10-16T12:40:50Z"}]},"affected":[{"package":{"name":"commodities","ecosystem":"npm","purl":"pkg:npm/commodities"},"versions":["0.4.2"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/commodities/MAL-2024-2001.json"}}],"schema_version":"1.7.3","credits":[{"name":"ReversingLabs","contact":["https://www.reversinglabs.com"],"type":"FINDER"}]}