failIncident: Malware

Scanned:

fabrice

Artifact:

latest

removed

malicious

SSH Automation

License: unknown

Published:

See on PyPI

SAFE Assessment

Compliance

Licenses

No license compliance issues

Secrets

No sensitive information found

Security

Vulnerabilities

No known vulnerabilities detected

Hardening

No application hardening issues

Threats

Tampering

1 components prone to hijacking

Malware

3 supply chain attack artifacts

IMPORTANT: All versions of this package have been malicious

Latest malware incident detected:

Version: 1.1.3

INCIDENTS FOR THIS VERSION:

malware

Reported By: Community (Snyk)

More info

malware

Reported By: Community (Socket)

More info

malware

Reported By: Community (The Hacker News)

More info

malware

Reported By: ReversingLabs (Researcher)

Learn more about malware detection

malware

Reported By: Community (OpenSSF)

More info

removal

Reported By: Community

Below is the list of direct dependencies declared by the software package through its manifest.

Name

Version

N/A

<2.0,>=1.3

<3.0,>=2.0.0

>=2.4

N/A

<4.0,>=3.2.5

N/A

Did you know...

... that you can use ReversingLabs’ Spectra Assure platform to perform regular risk assessments of packages you develop in-house?

We recommend continuous software safeness monitoring through CI/CD integrations and pre-release/deployment checks. In addition to basic package information found on this page our platform offers rich reports for developers and DevSecOps that help them remediate all reported issues.