{"id":"MAL-2025-590","summary":"Malicious code in sandstorm-widgets-nyse-website (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: ossf-package-analysis (521032aa86f84d6ee0bb3ad2b7b97e43683ed2040212f5b7cb5359f10549fea6)\nThe OpenSSF Package Analysis project identified 'sandstorm-widgets-nyse-website' @ 7.0.1 (npm) as malicious.\n\nIt is considered malicious because:\n\n- The package communicates with a domain associated with malicious activity.\n\n- The package executes one or more commands associated with malicious behavior.\n","modified":"2025-03-03T15:08:01Z","published":"2025-01-28T01:55:48Z","database_specific":{"malicious-packages-origins":[{"source":"ossf-package-analysis","modified_time":"2025-01-28T01:55:48Z","import_time":"2025-01-28T02:24:54.940846435Z","sha256":"521032aa86f84d6ee0bb3ad2b7b97e43683ed2040212f5b7cb5359f10549fea6","versions":["7.0.1"]},{"source":"ossf-package-analysis","modified_time":"2025-01-28T02:40:44Z","import_time":"2025-01-28T02:46:50.989657125Z","sha256":"bc2410964901d6fc2a89d8dabd90d91d52808c5d1a52857d5f251682add9eb4b","versions":["7.0.2"]},{"sha256":"5c4ff648d6b3f905de1ae2e6ed2b78dd72c1e758bfe6c07c4e54c680b2e6378f","modified_time":"2025-03-03T13:38:38Z","import_time":"2025-03-03T15:07:02.62475954Z","id":"RLMA-2025-01071","versions":["7.0.0","7.0.1","7.0.2"],"source":"reversing-labs"}]},"affected":[{"package":{"name":"sandstorm-widgets-nyse-website","ecosystem":"npm","purl":"pkg:npm/sandstorm-widgets-nyse-website"},"versions":["7.0.1","7.0.2","7.0.0"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/sandstorm-widgets-nyse-website/MAL-2025-590.json"}}],"schema_version":"1.7.3","credits":[{"name":"OpenSSF: Package Analysis","contact":["https://github.com/ossf/package-analysis","https://openssf.slack.com/channels/package_analysis"],"type":"FINDER"},{"name":"ReversingLabs","contact":["https://www.reversinglabs.com"],"type":"FINDER"}]}