dev-log-core@1.0.0

Lightweight debugging utility for Node.js and the browser

latest version

1.0.5

first published

2 months ago

latest version published

1 months ago

deprecated

Package is deprecated

licenses detected

MIT
>=0

View dev-log-core package health on Snyk (opens in a new tab)

Go back to all versions of this package

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the dev-log-core package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability Vulnerable Version

Vulnerability	Vulnerable Version
C Malicious Package dev-log-core is a malicious package. This package is the part of North Korea’s Contagious Interview Campaign and contains malicious payload, weaponised to steal credentials, wallets, and enable remote access to affected systems. The package attempts to mimic a legitimate package and the malicious payload is delivered upon calling functions that look normal for the package’s claimed purpose. How to fix Malicious Package? Avoid using all malicious instances of the `dev-log-core` package.	*

Malicious Package

dev-log-core is a malicious package. This package is the part of North Korea’s Contagious Interview Campaign and contains malicious payload, weaponised to steal credentials, wallets, and enable remote access to affected systems. The package attempts to mimic a legitimate package and the malicious payload is delivered upon calling functions that look normal for the package’s claimed purpose.

How to fix Malicious Package?

Avoid using all malicious instances of the dev-log-core package.

Go back to all versions of this package