cychelloworld

Artifact:

latest

removed

malicious

Research

License: unknown

Published:

Publisher: ahban

See on Visual Studio Code

SAFE Assessment

Compliance

Licenses

No license compliance issues

Secrets

No sensitive information found

Security

Vulnerabilities

3 severe vulnerabilities exploited

Hardening

No application hardening issues

Threats

Tampering

1 components prone to hijacking

Malware

1 supply chain attack artifacts

IMPORTANT: All versions of this package have been malicious

Latest malware incident detected:

Version: 0.2.2

INCIDENTS FOR THIS VERSION:

malware

Reported By: ReversingLabs (Researcher)

Learn more about malware detection

removal

Reported By: Community

List of known vulnerabilities affecting the software package and the components it embeds. Last refreshed on: 2025/12/12

All detected vulnerabilities are fixable

Run the update/upgrade command in your package manager to resolve the detected vulnerabilities

CVSS Score

CVE

Name

Did you know...

... that you can use ReversingLabs’ Spectra Assure platform to perform regular risk assessments of packages you develop in-house?

We recommend continuous software safeness monitoring through CI/CD integrations and pre-release/deployment checks. In addition to basic package information found on this page our platform offers rich reports for developers and DevSecOps that help them remediate all reported issues.