npm (JS/TS)
Package Last Indexed: Apr 21, 2024
Version 1.0.3
Security alert
Security researchers at Stacklok have identified that this package is malicious. This package is advertised as Express middleware, but if it is used in that manner, it could give an attacker the ability to run arbitrary code on your server. This package has been heavily obfuscated to avoid detection and identification of its malicious nature. Stacklok security researchers have identified this package and reported it to the GitHub Trust & Safety team. As a result, this package has been removed from the registry.
Package information
No Package Information available
Trusty Score
Trusty Score
How do we calculate this score?
We use statistical analysis to rate packages from 0-10. Higher ratings typically indicate safer packages.
Learn More
Proof of Origin (Provenance)
We were unable to match this package to a source code repository.
Security Checks
Trusty’s security analysis has identified potential supply chain attacks. Review is recommended. Please view details for further information
Similar Packages