Spectra Assure
Community
Docs

pm2v2.2.1

malicious
Top 10k
Copy SHA256
License: Copyleft (AGPL-3.0)
npm
Homepage
Published: over 8 years ago
Production process manager for Node.JS applications with a built-in load balancer.
Fail
Incident: Malware
3 malicious dependencies found
Incidents
Type: malwareReported By: ReversingLabs (Automated) Reported: 17 days ago
Learn more about malware detection

SAFE Assessment

Compliance

Licenses
7 copyleft licensed components
Secrets
No sensitive information found

Security

Vulnerabilities
9 severe vulnerabilities exploited
Hardening
No application hardening issues

Threats

Tampering
6 suspicious application behaviors
Malware
3 malicious dependencies found

Issues

See all issues
high
Detected presence of software components authored by accounts in regions with EU export restrictions.
hunting
high
Detected presence of files containing URLs that link to raw files on GitHub.
hunting
high
Detected presence of files with behaviors similar to malicious packages published on NPM.
hunting
high
Detected presence of high severity vulnerabilities.
vulnerabilities
high
Detected presence of critical severity vulnerabilities.
vulnerabilities

Behaviors

See all behaviors
Tampers with system environment variables.
settings
Modifies file/directory permissions.
permissions
Might contain potentially obfuscated code or data.
anomaly
The software package was developed by a user known for distributing destructive protestware packages.
anomaly
Encodes data using the Base64 algorithm.
packer

Vulnerabilities

critical2
high10
medium6
low0

Downloads

364.49M
Recorded Downloads Since 2021

Maintenance

3
Maintainers

Dependencies

24
Declared Dependencies

Dependents

2.41K
Dependents

Issues per Version Graph

Scanned 3 days ago
This website uses cookies to ensure the best website experience. By continuing to use this website you are giving your consent to cookies being used. Detailed information about our use of cookies is here.