Spectra Assure
Community
Docs

fabricev1.1.3

latest
malicious
Copy SHA256
License: unknown
PyPI
Homepage
Published: almost 4 years ago
SSH Automation
Fail
Incident: Malware
3 supply chain attack artifacts
Incidents
Type: malwareReported By: Community (Snyk)Reported: 8 months ago
Type: malwareReported By: Community (Socket)Reported: 8 months ago
Type: malwareReported By: Community (The Hacker News)Reported: 8 months ago
Type: malwareReported By: ReversingLabs (Researcher) Reported: 8 months ago
Learn more about malware detection
Type: malwareReported By: Community (OpenSSF)Reported: 8 months ago

SAFE Assessment

Compliance

Licenses
No license compliance issues
Secrets
No sensitive information found

Security

Vulnerabilities
1 severe vulnerabilities exploited
Hardening
No application hardening issues

Threats

Tampering
1 suspicious application behaviors
Malware
3 supply chain attack artifacts

Issues

See all issues
high
Detected presence of files with behaviors similar to malicious packages published on PyPI.
hunting
high
Detected presence of high severity vulnerabilities.
vulnerabilities
high
Detected presence of critical severity vulnerabilities.
vulnerabilities
high
Detected presence of malware-exploited vulnerabilities.
vulnerabilities
high
Detected presence of severe vulnerabilities with active exploitation.
vulnerabilities

Behaviors

See all behaviors
Modifies file/directory permissions.
permissions
Sends data on a connected TCP socket.
network
Receives data from a connected TCP socket.
network
Permits an incoming connection on a TCP socket.
network
Opens a socket listening for an incoming connection.
network

Vulnerabilities

critical1
high1
medium2
low0

Downloads

37.63K
Total Downloads

Contributions

1
Contributor

Dependencies

7
Declared Dependencies

Dependents

2
Dependents