{"id":"MAL-2024-5503","summary":"Malicious code in pipcolouringslibv1 (PyPI)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n","aliases":["SNYK-PYTHON-PIPCOLOURINGSLIBV1-5932225"],"modified":"2024-10-24T01:01:59Z","published":"2024-06-25T13:38:21Z","database_specific":{"malicious-packages-origins":[{"modified_time":"2024-06-25T13:38:21Z","id":"RLMA-2024-04285","versions":["1.5.1","1.0.0"],"source":"reversing-labs","sha256":"fdcb271acf263f5af35083811db5db94d9f2728f00906d80a6bb315d0328d6c4","import_time":"2024-06-28T02:49:42.030565542Z"},{"modified_time":"2024-10-16T14:45:42Z","id":"RLUA-2024-08713","source":"reversing-labs","sha256":"6b3089fd09d745f585bb8738a3066dffea67e4e91d8e5d7d3897a0f36021f1dd","import_time":"2024-10-24T00:59:37.010377856Z"}]},"references":[{"type":"ARTICLE","url":"https://medium.com/checkmarx-security/the-evolutionary-tale-of-a-persistent-python-threat-d19196d4ed15"},{"type":"ADVISORY","url":"https://research.jfrog.com/malicious-packages/"},{"type":"ADVISORY","url":"https://security.snyk.io/vuln/SNYK-PYTHON-PIPCOLOURINGSLIBV1-5932225"}],"affected":[{"package":{"name":"pipcolouringslibv1","ecosystem":"PyPI","purl":"pkg:pypi/pipcolouringslibv1"},"versions":["1.5.1","1.0.0"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/pipcolouringslibv1/MAL-2024-5503.json"}}],"schema_version":"1.7.3","credits":[{"name":"ReversingLabs","contact":["https://www.reversinglabs.com"],"type":"FINDER"}]}