From 2369caf4fbde138e7dcb84f37b935c0cb3cdee63 Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 24 Dec 2024 19:05:41 +0000 Subject: [PATCH] Assign IDs --- osv/malicious/.id-allocator | 2 +- ...analysis-0692a0aa494fccc1.json => MAL-2024-12119.json} | 8 ++++---- 2 files changed, 5 insertions(+), 5 deletions(-) rename osv/malicious/npm/stablecoin-aptos/{MAL-0000-ossf-package-analysis-0692a0aa494fccc1.json => MAL-2024-12119.json} (69%) diff --git a/osv/malicious/.id-allocator b/osv/malicious/.id-allocator index d0e40c619..dcaf63614 100644 --- a/osv/malicious/.id-allocator +++ b/osv/malicious/.id-allocator @@ -1 +1 @@ -052b5c642b8b2b75cf01008e926396775ca2a52a91e221eed8ea021a53b63c33 \ No newline at end of file +26c98a60ecdb02d7d370f65ed7745f11cdc69b977230d9f1dce17dab432e1e97 \ No newline at end of file diff --git a/osv/malicious/npm/stablecoin-aptos/MAL-0000-ossf-package-analysis-0692a0aa494fccc1.json b/osv/malicious/npm/stablecoin-aptos/MAL-2024-12119.json similarity index 69% rename from osv/malicious/npm/stablecoin-aptos/MAL-0000-ossf-package-analysis-0692a0aa494fccc1.json rename to osv/malicious/npm/stablecoin-aptos/MAL-2024-12119.json index 3c1c5ab34..d26df28eb 100644 --- a/osv/malicious/npm/stablecoin-aptos/MAL-0000-ossf-package-analysis-0692a0aa494fccc1.json +++ b/osv/malicious/npm/stablecoin-aptos/MAL-2024-12119.json @@ -2,9 +2,9 @@ "modified": "2024-12-24T18:44:04Z", "published": "2024-12-24T18:44:04Z", "schema_version": "1.5.0", - "id": "", + "id": "MAL-2024-12119", "summary": "Malicious code in stablecoin-aptos (npm)", - "details": "The OpenSSF Package Analysis project identified 'stablecoin-aptos' @ 1.1.0 (npm) as malicious.\n\nIt is considered malicious because:\n\n- The package communicates with a domain associated with malicious activity.\n", + "details": "\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: ossf-package-analysis (0692a0aa494fccc138d919ed1fe13eecb264c9b5b0470c695ed2ea6a9bbf3b6b)\nThe OpenSSF Package Analysis project identified 'stablecoin-aptos' @ 1.1.0 (npm) as malicious.\n\nIt is considered malicious because:\n\n- The package communicates with a domain associated with malicious activity.\n", "affected": [ { "package": { @@ -29,10 +29,10 @@ "database_specific": { "malicious-packages-origins": [ { - "source": "ossf-package-analysis", - "sha256": "0692a0aa494fccc138d919ed1fe13eecb264c9b5b0470c695ed2ea6a9bbf3b6b", "import_time": "2024-12-24T19:04:56.234793835Z", "modified_time": "2024-12-24T18:44:04Z", + "sha256": "0692a0aa494fccc138d919ed1fe13eecb264c9b5b0470c695ed2ea6a9bbf3b6b", + "source": "ossf-package-analysis", "versions": [ "1.1.0" ]