failIncident: Malware

Scanned:

@asyncapi/specs

latest

removed

malicious

Top 10k

AsyncAPI schema versions

License: Permissive (Apache-2.0)

Published:

Visit GitHub

See on npm

SAFE Assessment

Compliance

Licenses

No license compliance issues

Secrets

No sensitive information found

Security

Vulnerabilities

No known vulnerabilities detected

Hardening

No application hardening issues

Threats

Tampering

1 suspicious application behaviors

Malware

5 supply chain attack artifacts

IMPORTANT: This package had 4 malicious incidents in the last 2 years

Latest malware incident detected:

Version: 6.8.3

INCIDENTS FOR THIS VERSION:

malware

Reported By: Community (StepSecurity)

More info

malware

Reported By: Community (aikido)

More info

malware

Reported By: Community (Wiz)

More info

malware

Reported By: Community (Socket)

More info

malware

Reported By: Community (GitHub Advisory)

More info

malware

Reported By: Community (Koi)

More info

malware

Reported By: Community (Veracode)

More info

malware

Reported By: Community (OpenSSF)

More info

malware

Reported By: Community (Mend)

More info

malware

Reported By: Community (Checkmarx)

More info

malware

Reported By: ReversingLabs (Researcher)

See more info on our blog

removal

N/AReported By: Community

Spectra Assure analysis detects 9 more components

Learn more about Spectra Assure

Below is the list of direct dependencies declared by the software package through its manifest.

Name

Version

@types/json-schema

^7.0.11

Did you know...

... that you can use ReversingLabs’ Spectra Assure platform to perform regular risk assessments of packages you develop in-house?

We recommend continuous software safeness monitoring through CI/CD integrations and pre-release/deployment checks. In addition to basic package information found on this page our platform offers rich reports for developers and DevSecOps that help them remediate all reported issues.