Spectra Assure
Community
Docs

noblox.js-securev4.2.3

latest
malicious
Research
Copy SHA256
License: Permissive (MIT)
npm
Homepage
Published: about 2 years ago
A Node.js API wrapper for Roblox.
Fail
Incident: Malware
4 supply chain attack artifacts
Incidents
Type: malwareReported By: ReversingLabs (Researcher) Reported: about 2 years ago
Learn more about malware detection
Type: malwareReported By: Community (OpenSSF)Reported: about 1 year ago

SAFE Assessment

Compliance

Licenses
No license compliance issues
Secrets
No sensitive information found

Security

Vulnerabilities
1 medium severity vulnerabilities
Hardening
No application hardening issues

Threats

Tampering
1 impersonated components found
Malware
4 supply chain attack artifacts

Issues

See all issues
high
Detected presence of software components that are impersonating popular software packages.
hunting
high
Detected presence of software components that had a recent malware or tampering incident.
hunting
high
Detected presence of files containing URLs that link to raw files on GitHub.
hunting
high
Detected presence of files with behaviors similar to malicious packages published on NPM.
hunting
high
Detected presence of malicious files through analyst-vetted file reputation.
threats

Behaviors

See all behaviors
The software package impersonates a popular package from a public package repository.
anomaly
Contains potentially obfuscated code or data.
packer
Contains URLs that link to raw files on GitHub.
network
Contains URLs that reside in regions sanctioned by the European Union.
network
Calculates the MD5 hash of data.
file

Vulnerabilities

critical0
high0
medium1
low0

Downloads

N/A
Recorded Downloads Since 2021

Contributions

1
Contributor

Dependencies

9
Declared Dependencies

Dependents

0
Dependents
This website uses cookies to ensure the best website experience. By continuing to use this website you are giving your consent to cookies being used. Detailed information about our use of cookies is here.