Assign IDs

ossf · Dec 20, 2024 · b7ce87f · b7ce87f
1 parent de9fa89
commit b7ce87f
Show file tree

Hide file tree

Showing 2 changed files with 15 additions and 47 deletions.
diff --git a/osv/malicious/npm/devops-challenge/MAL-0000-ossf-package-analysis-ae82cf2333c3027e.json b/osv/malicious/npm/devops-challenge/MAL-0000-ossf-package-analysis-ae82cf2333c3027e.json
diff --git a/osv/malicious/npm/devops-challenge/MAL-2023-1566.json b/osv/malicious/npm/devops-challenge/MAL-2023-1566.json
@@ -1,18 +1,19 @@
 {
-  "modified": "2023-08-24T11:55:48Z",
+  "modified": "2024-12-20T10:06:07Z",
   "published": "2023-08-24T11:55:48Z",
   "schema_version": "1.5.0",
   "id": "MAL-2023-1566",
   "summary": "Malicious code in devops-challenge (npm)",
-  "details": "\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: ossf-package-analysis (8991bc34cfb7d5ef8f09875bd4d1bdc71ab89e54104b9205a85f86d03bc3ede3)\nThe OpenSSF Package Analysis project identified 'devops-challenge' @ 15.0.0 (npm) as malicious.\n\nIt is considered malicious because:\n\n- The package communicates with a domain associated with malicious activity.\n\n- The package executes one or more commands associated with malicious behavior.\n",
+  "details": "\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: ossf-package-analysis (ae82cf2333c3027eb9266e05dfa4697724ae1623e3b662c2b129d5f716f55aa4)\nThe OpenSSF Package Analysis project identified 'devops-challenge' @ 99.99.990 (npm) as malicious.\n\nIt is considered malicious because:\n\n- The package communicates with a domain associated with malicious activity.\n\n- The package executes one or more commands associated with malicious behavior.\n",
   "affected": [
     {
       "package": {
         "ecosystem": "npm",
         "name": "devops-challenge"
       },
       "versions": [
-        "15.0.0"
+        "15.0.0",
+        "99.99.990"
       ]
     }
   ],
@@ -29,13 +30,22 @@
   "database_specific": {
     "malicious-packages-origins": [
       {
+        "source": "ossf-package-analysis",
+        "sha256": "8991bc34cfb7d5ef8f09875bd4d1bdc71ab89e54104b9205a85f86d03bc3ede3",
         "import_time": "2023-08-24T12:07:20.634603707Z",
         "modified_time": "2023-08-24T11:55:48Z",
-        "sha256": "8991bc34cfb7d5ef8f09875bd4d1bdc71ab89e54104b9205a85f86d03bc3ede3",
-        "source": "ossf-package-analysis",
         "versions": [
           "15.0.0"
         ]
+      },
+      {
+        "source": "ossf-package-analysis",
+        "sha256": "ae82cf2333c3027eb9266e05dfa4697724ae1623e3b662c2b129d5f716f55aa4",
+        "import_time": "2024-12-20T10:05:40.822505694Z",
+        "modified_time": "2024-12-20T09:55:47Z",
+        "versions": [
+          "99.99.990"
+        ]
       }
     ]
   }