Spectra Assure
Community
Docs
failIncident: Malware
Scanned: 9 days ago

Todo+

Artifact:
malicious
Top 1k
Manage todo lists with ease. Powerful, easy to use and customizable.
License: Permissive (MIT)
Published: almost 7 years ago
Publisher: fabiospampinato
Visit Github
See on Visual Studio Code

SAFE Assessment

Compliance

Licenses
No license compliance issues
Secrets
No sensitive information found

Security

Vulnerabilities
19 severe vulnerabilities exploited
Hardening
No application hardening issues

Threats

Tampering
No evidence of software tampering
Malware
4 undesirable applications found

INCIDENTS FOR THIS VERSION:

malware
9 months agoReported By: ReversingLabs (Automated)
Learn more about malware detection
List of known vulnerabilities affecting the software package and the components it embeds. Last refreshed on: 2025/12/06
All detected vulnerabilities are fixable
Run the update/upgrade command in your package manager to resolve the detected vulnerabilities
CVSS Score
CVE
Name
Tags
critical
9.8
CVE-2019-10746
Exploits Exist
Fix Available
critical
9.8
CVE-2019-10747
Exploits Exist
Fix Available
critical
9.8
CVE-2020-7788
Exploits Exist
Fix Available
critical
9.8
CVE-2021-23440
Exploits Exist
Fix Available
critical
9.8
CVE-2021-44906
Exploits Exist
Fix Available
critical
9.8
CVE-2023-45311
Exploits Exist
Fix Available
critical
9.1
CVE-2019-10744
Exploits Exist
Fix Available
high
8.6
CVE-2021-37701
Fix Available
high
8.6
CVE-2021-37712
Fix Available
high
8.6
CVE-2021-37713
Fix Available

Did you know...

... that you can use ReversingLabs’ Spectra Assure platform to perform regular risk assessments of packages you develop in-house?

We recommend continuous software safeness monitoring through CI/CD integrations and pre-release/deployment checks. In addition to basic package information found on this page our platform offers rich reports for developers and DevSecOps that help them remediate all reported issues.