{"id":"MAL-2025-41607","summary":"Malicious code in sqrt-bn (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n","modified":"2025-08-28T07:41:00Z","published":"2025-08-28T07:41:00Z","database_specific":{"malicious-packages-origins":[{"versions":["1.9.8"],"source":"reversing-labs","id":"RLMA-2025-04694","sha256":"56d19c8f79316a1d0a8b6c4226b568a4945b7a1f4978d37566aa58c33246d565","import_time":"2025-08-29T06:42:37.267396773Z","modified_time":"2025-08-28T07:41:00Z"}]},"affected":[{"package":{"name":"sqrt-bn","ecosystem":"npm","purl":"pkg:npm/sqrt-bn"},"versions":["1.9.8"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/sqrt-bn/MAL-2025-41607.json"}}],"schema_version":"1.7.3","credits":[{"name":"Amazon Inspector","contact":["actran@amazon.com"],"type":"FINDER"},{"name":"ReversingLabs","contact":["https://www.reversinglabs.com"],"type":"FINDER"}]}