-= Per source details. Do not edit below this line.=-
The OpenSSF Package Analysis project identified '@the-df-company/commod' @ 1.0.0 (npm) as malicious.
It is considered malicious because:
The package communicates with a domain associated with malicious activity.
The package executes one or more commands associated with malicious behavior.
{ "malicious-packages-origins": [ { "modified_time": "2024-09-21T16:36:11Z", "import_time": "2024-09-21T16:37:50.678032017Z", "versions": [ "1.0.0" ], "source": "ossf-package-analysis", "sha256": "5ef49313b5c6faeeb4fe243f85058ce379b31887177f5dbe49a4dac3252fe7f0" } ] }