Spectra Assure
Community
Docs

postmark-mcpv1.0.18

latest
malicious
Copy SHA256
License: Permissive (MIT)
npm
Published: about 1 month ago
Universal Postmark MCP server using official SDK
Fail
Incident: Malware
4 supply chain attack artifacts
Incidents
Type: malwareReported By: Community (Koi)Reported: 26 days ago
More info
Type: malwareReported By: Community (Snyk)Reported: 26 days ago
More info
Type: malwareReported By: Community (OpenSSF)Reported: 25 days ago
More info
Type: malwareReported By: ReversingLabs (Researcher) Reported: 25 days ago
Learn more about malware detection

SAFE Assessment

Compliance

Licenses
No license compliance issues
Secrets
No sensitive information found

Security

Vulnerabilities
No known vulnerabilities detected
Hardening
No application hardening issues

Threats

Tampering
2 malware-like behaviors found
Malware
4 supply chain attack artifacts

Issues

See all issues
high
Detected presence of known software supply chain attack artifacts.
threats
high
Detected presence of malicious files through analyst-vetted file reputation.
threats
high
Detected presence of files with behaviors that match the infostealer malware profile.
hunting
medium
Detected presence of software components that were recently published to the public package repository.
hunting
medium
Detected presence of software components that are rarely included by other public software packages.
hunting

Behaviors

See all behaviors
Encodes data using the Base64 algorithm.
packer
Executes files during installation or upon launch.
execution
Contains URLs related to messaging services.
network
Connects through HTTP.
network
Creates shortcuts during installation or upon launch.
file

Vulnerabilities

critical0
high0
medium0
low0

Downloads

N/A
Recorded Downloads Since 2021

Contributions

1
Contributor

Dependencies

5
Declared Dependencies

Dependents

0
Dependents