{"id":"MAL-2026-10769","summary":"Malicious code in easyway2 (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: ghsa-malware (ece63ecb6a3067db91e95d2ae9ac5281e78bd204b775fd9d2a04437d7a009545)\n## Source: ossf-package-analysis (b70fe150bb8d389d4b3f437dff96763448359cafed12db8139236f3d40b88565)\nThe OpenSSF Package Analysis project identified 'easyway2' @ 1.0.3 (npm) as malicious.\n\nIt is considered malicious because:\n\n- The package communicates with a domain associated with malicious activity.\n\n---\n\nCredit: [OpenSSF](https://github.com/ossf/malicious-packages) ([source](https://github.com/ossf/malicious-packages/blob/96845bb6b7c635d6860f7de9103fbaec06360beb/osv/malicious/npm/easyway2/MAL-2026-10769.json))\n\n## Source: ossf-package-analysis (b70fe150bb8d389d4b3f437dff96763448359cafed12db8139236f3d40b88565)\nThe OpenSSF Package Analysis project identified 'easyway2' @ 1.0.3 (npm) as malicious.\n\nIt is considered malicious because:\n\n- The package communicates with a domain associated with malicious activity.\n","aliases":["GHSA-68c2-54w2-m326"],"modified":"2026-07-18T02:04:36.264190510Z","published":"2026-07-17T12:44:58Z","database_specific":{"malicious-packages-origins":[{"source":"ossf-package-analysis","sha256":"b70fe150bb8d389d4b3f437dff96763448359cafed12db8139236f3d40b88565","import_time":"2026-07-17T12:58:02.018368476Z","modified_time":"2026-07-17T12:44:58Z","versions":["1.0.3"]},{"modified_time":"2026-07-17T14:10:44Z","versions":["1.0.7"],"source":"ossf-package-analysis","sha256":"dff64fea0cd0fc61895597193439279782028def9d61a53fa870e90a4cfb7a50","import_time":"2026-07-17T14:36:10.405326207Z"},{"import_time":"2026-07-18T01:54:31.677359494Z","id":"GHSA-68c2-54w2-m326","modified_time":"2026-07-18T01:23:05Z","versions":["1.0.7","1.0.3"],"source":"ghsa-malware","sha256":"ece63ecb6a3067db91e95d2ae9ac5281e78bd204b775fd9d2a04437d7a009545"}]},"references":[{"type":"ADVISORY","url":"https://github.com/advisories/GHSA-68c2-54w2-m326"}],"affected":[{"package":{"name":"easyway2","ecosystem":"npm","purl":"pkg:npm/easyway2"},"versions":["1.0.3","1.0.7"],"database_specific":{"cwes":[{"description":"The product contains code that appears to be malicious in nature.","name":"Embedded Malicious Code","cweId":"CWE-506"}],"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/easyway2/MAL-2026-10769.json"}}],"schema_version":"1.7.5","credits":[{"name":"OpenSSF: Package Analysis","contact":["https://github.com/ossf/package-analysis","https://openssf.slack.com/channels/package_analysis"],"type":"FINDER"}]}