Assign IDs

osv/malicious/.id-allocator

@@ -1 +1 @@
-e7de0a7c98ac53b6e1705bb896576b36d8f230070d24a84482896c42fdda1230
+132b884bf00830018e2760286c2cc2a0acefaabb05a1d50cd4285ee9eb226675

osv/malicious/npm/aauto-assign-team-action/MAL-0000-ossf-package-analysis-7a1940e473e85340.json → osv/malicious/npm/aauto-assign-team-action/MAL-2024-12067.json

@@ -2,9 +2,9 @@
   "modified": "2024-12-20T06:15:47Z",
   "published": "2024-12-20T06:15:47Z",
   "schema_version": "1.5.0",
-  "id": "",
+  "id": "MAL-2024-12067",
   "summary": "Malicious code in aauto-assign-team-action (npm)",
-  "details": "The OpenSSF Package Analysis project identified 'aauto-assign-team-action' @ 0.0.9 (npm) as malicious.\n\nIt is considered malicious because:\n\n- The package communicates with a domain associated with malicious activity.\n\n- The package executes one or more commands associated with malicious behavior.\n",
+  "details": "\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: ossf-package-analysis (7a1940e473e85340855b988ae41ca9c65a1c1e2ee81c63e96329b35b605b6405)\nThe OpenSSF Package Analysis project identified 'aauto-assign-team-action' @ 0.0.9 (npm) as malicious.\n\nIt is considered malicious because:\n\n- The package communicates with a domain associated with malicious activity.\n\n- The package executes one or more commands associated with malicious behavior.\n",
   "affected": [
     {
       "package": {
@@ -29,10 +29,10 @@
   "database_specific": {
     "malicious-packages-origins": [
       {
-        "source": "ossf-package-analysis",
-        "sha256": "7a1940e473e85340855b988ae41ca9c65a1c1e2ee81c63e96329b35b605b6405",
         "import_time": "2024-12-20T06:39:10.132969996Z",
         "modified_time": "2024-12-20T06:15:47Z",
+        "sha256": "7a1940e473e85340855b988ae41ca9c65a1c1e2ee81c63e96329b35b605b6405",
+        "source": "ossf-package-analysis",
         "versions": [
           "0.0.9"
         ]

osv/malicious/npm/nuget.shouldly/MAL-0000-ossf-package-analysis-8b75cf0ab6d0316c.json → osv/malicious/npm/nuget.shouldly/MAL-2024-12068.json

@@ -2,9 +2,9 @@
   "modified": "2024-12-20T06:25:50Z",
   "published": "2024-12-20T06:25:50Z",
   "schema_version": "1.5.0",
-  "id": "",
+  "id": "MAL-2024-12068",
   "summary": "Malicious code in nuget.shouldly (npm)",
-  "details": "The OpenSSF Package Analysis project identified 'nuget.shouldly' @ 9.9.9 (npm) as malicious.\n\nIt is considered malicious because:\n\n- The package communicates with a domain associated with malicious activity.\n\n- The package executes one or more commands associated with malicious behavior.\n",
+  "details": "\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: ossf-package-analysis (8b75cf0ab6d0316c99a53395d97679eb414091ca9cf5da5e3cdf6818f456cc45)\nThe OpenSSF Package Analysis project identified 'nuget.shouldly' @ 9.9.9 (npm) as malicious.\n\nIt is considered malicious because:\n\n- The package communicates with a domain associated with malicious activity.\n\n- The package executes one or more commands associated with malicious behavior.\n",
   "affected": [
     {
       "package": {
@@ -29,10 +29,10 @@
   "database_specific": {
     "malicious-packages-origins": [
       {
-        "source": "ossf-package-analysis",
-        "sha256": "8b75cf0ab6d0316c99a53395d97679eb414091ca9cf5da5e3cdf6818f456cc45",
         "import_time": "2024-12-20T06:39:10.204217809Z",
         "modified_time": "2024-12-20T06:25:50Z",
+        "sha256": "8b75cf0ab6d0316c99a53395d97679eb414091ca9cf5da5e3cdf6818f456cc45",
+        "source": "ossf-package-analysis",
         "versions": [
           "9.9.9"
         ]