{"id":"MAL-2025-47876","summary":"Malicious code in fc-system-testing (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: ossf-package-analysis (192ca56fc1f77c6e39d9fdded9dbee0f4973f1fc49ee37e5f773d9f60d70858c)\nThe OpenSSF Package Analysis project identified 'fc-system-testing' @ 1.0.0 (npm) as malicious.\n\nIt is considered malicious because:\n\n- The package communicates with a domain associated with malicious activity.\n","modified":"2025-10-02T09:01:09Z","published":"2025-10-02T09:01:09Z","database_specific":{"malicious-packages-origins":[{"sha256":"192ca56fc1f77c6e39d9fdded9dbee0f4973f1fc49ee37e5f773d9f60d70858c","import_time":"2025-10-02T09:06:47.319857114Z","versions":["1.0.0"],"source":"ossf-package-analysis","modified_time":"2025-10-02T09:01:09Z"}]},"affected":[{"package":{"name":"fc-system-testing","ecosystem":"npm","purl":"pkg:npm/fc-system-testing"},"versions":["1.0.0"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/fc-system-testing/MAL-2025-47876.json"}}],"schema_version":"1.7.3","credits":[{"name":"Amazon Inspector","contact":["actran@amazon.com"],"type":"FINDER"},{"name":"OpenSSF: Package Analysis","contact":["https://github.com/ossf/package-analysis","https://openssf.slack.com/channels/package_analysis"],"type":"FINDER"}]}