0.0.1-security
5 years ago
5 years ago
Known vulnerabilities in the maybemaliciouspackage package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for freeVulnerability | Vulnerable Version |
---|---|
This is especially dangerous in production runtime environments, where environment variables tend to consist of keys, passwords, tokens and other secrets. On August 1st, 2017 npm deprecated all malicious typosquatting libraries from this list. The list of packages and their scripts are:
How to fix Malicious Package? Avoid usage of this package altogether. | * |