{"id":"MAL-2024-7767","summary":"Malicious code in @playsistemico/core (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: ossf-package-analysis (630104848acd582d628c24e45dc9472952d21452b641115bb0d9fd3eabb2a5dc)\nThe OpenSSF Package Analysis project identified '@playsistemico/core' @ 11.33.70 (npm) as malicious.\n\nIt is considered malicious because:\n\n- The package communicates with a domain associated with malicious activity.\n","modified":"2024-07-17T12:43:40Z","published":"2024-07-17T12:17:59Z","database_specific":{"malicious-packages-origins":[{"import_time":"2024-07-17T12:43:05.493989558Z","versions":["11.33.70"],"sha256":"630104848acd582d628c24e45dc9472952d21452b641115bb0d9fd3eabb2a5dc","modified_time":"2024-07-17T12:17:59Z","source":"ossf-package-analysis"},{"import_time":"2024-07-17T12:43:05.550101179Z","versions":["21.33.73"],"sha256":"ed3ebfa58bf7037fb6d8b993f26e902cc2d6fb96bceca0696796cac979cc27dc","modified_time":"2024-07-17T12:43:03Z","source":"ossf-package-analysis"}]},"affected":[{"package":{"name":"@playsistemico/core","ecosystem":"npm","purl":"pkg:npm/%40playsistemico/core"},"versions":["11.33.70","21.33.73"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/@playsistemico/core/MAL-2024-7767.json"}}],"schema_version":"1.7.3","credits":[{"name":"OpenSSF: Package Analysis","contact":["https://github.com/ossf/package-analysis","https://openssf.slack.com/channels/package_analysis"],"type":"FINDER"}]}