Spectra Assure
Community
Docs

noblox.js-securev4.2.1

malicious
Research
Copy SHA256
License: Permissive (MIT)
npm
Homepage
Published: almost 2 years ago
A Node.js API wrapper for Roblox.
Fail
Incident: Malware
4 supply chain attack artifacts
Incidents
Type: malwareReported By: ReversingLabs (Researcher) Reported: almost 2 years ago
Learn more about malware detection
Type: malwareReported By: Community (OpenSSF)Reported: 10 months ago
Type: malwareReported By: ReversingLabs (Automated) Reported: about 1 month ago
Learn more about malware detection

SAFE Assessment

Compliance

Licenses
No license compliance issues
Secrets
No sensitive information found

Security

Vulnerabilities
1 medium severity vulnerabilities
Hardening
No application hardening issues

Threats

Tampering
No evidence of software tampering
Malware
4 supply chain attack artifacts

Issues

See all issues
high
Detected presence of files containing URLs that link to raw files on GitHub.
hunting
high
Detected presence of software components with malicious dependencies.
threats
high
Detected presence of malicious files through analyst-vetted file reputation.
threats
high
Detected presence of known software supply chain attack artifacts.
threats
medium
Detected presence of files containing URLs that reside in regions with EU export restrictions.
hunting

Behaviors

See all behaviors
Contains potentially obfuscated code or data.
packer
Contains URLs that link to raw files on GitHub.
network
Contains URLs that reside in regions sanctioned by the European Union.
network
Calculates the MD5 hash of data.
file
Enumerates files in a given directory.
search

Vulnerabilities

critical0
high0
medium1
low0

Downloads

N/A
Recorded Downloads Since 2021

Maintenance

1
Contributor

Dependencies

10
Declared Dependencies

Dependents

0
Dependents

Issues per Version Graph

Scanned 11 days ago