0.0.1-security
2 years ago
2 years ago
Known vulnerabilities in the chawla-init-3 package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for freeVulnerability | Vulnerable Version |
---|---|
chawla-init-3 is a malicious package. This is a "dependency confusion" package, which means the package name is based on existing repositories, namespaces, or components, it aims to trick users to download the package which contains a malicious code. How to fix Malicious Package? Avoid using all malicious instances of the | * |