ossf
diff --git a/‎config/start-keys.yaml‎
Lines changed: 1 addition & 1 deletion b/‎config/start-keys.yaml‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎osv/malicious/npm/8x8-developer-docs/MAL-0000-amazon-inspector-830ce990639483b2.json‎
Lines changed: 41 additions & 0 deletions b/‎osv/malicious/npm/8x8-developer-docs/MAL-0000-amazon-inspector-830ce990639483b2.json‎
Lines changed: 41 additions & 0 deletions
diff --git a/‎osv/malicious/npm/@3stripes/api-client/MAL-0000-amazon-inspector-1644f08d12a97a4d.json‎
Lines changed: 41 additions & 0 deletions b/‎osv/malicious/npm/@3stripes/api-client/MAL-0000-amazon-inspector-1644f08d12a97a4d.json‎
Lines changed: 41 additions & 0 deletions
diff --git a/‎osv/malicious/npm/@3stripes/auth/MAL-0000-amazon-inspector-152509a4bd82adf6.json‎
Lines changed: 41 additions & 0 deletions b/‎osv/malicious/npm/@3stripes/auth/MAL-0000-amazon-inspector-152509a4bd82adf6.json‎
Lines changed: 41 additions & 0 deletions
diff --git a/‎osv/malicious/npm/@3stripes/common/MAL-0000-amazon-inspector-2cf6f6a1fb0e79c7.json‎
Lines changed: 41 additions & 0 deletions b/‎osv/malicious/npm/@3stripes/common/MAL-0000-amazon-inspector-2cf6f6a1fb0e79c7.json‎
Lines changed: 41 additions & 0 deletions
diff --git a/‎osv/malicious/npm/@3stripes/helpers/MAL-0000-amazon-inspector-43a7574944c39316.json‎
Lines changed: 41 additions & 0 deletions b/‎osv/malicious/npm/@3stripes/helpers/MAL-0000-amazon-inspector-43a7574944c39316.json‎
Lines changed: 41 additions & 0 deletions
diff --git a/‎osv/malicious/npm/@3stripes/lib/MAL-0000-amazon-inspector-2cefc88878b1d12a.json‎
Lines changed: 41 additions & 0 deletions b/‎osv/malicious/npm/@3stripes/lib/MAL-0000-amazon-inspector-2cefc88878b1d12a.json‎
Lines changed: 41 additions & 0 deletions
diff --git a/‎osv/malicious/npm/@3stripes/ui/MAL-0000-amazon-inspector-3319f763eb66b1fa.json‎
Lines changed: 41 additions & 0 deletions b/‎osv/malicious/npm/@3stripes/ui/MAL-0000-amazon-inspector-3319f763eb66b1fa.json‎
Lines changed: 41 additions & 0 deletions
diff --git a/‎osv/malicious/npm/@3stripes/utils/MAL-0000-amazon-inspector-a35a49fa45b49083.json‎
Lines changed: 41 additions & 0 deletions b/‎osv/malicious/npm/@3stripes/utils/MAL-0000-amazon-inspector-a35a49fa45b49083.json‎
Lines changed: 41 additions & 0 deletions
diff --git a/‎osv/malicious/npm/@adamallana0909/apple-research-test/MAL-0000-amazon-inspector-7d8bddd202efdf48.json‎
Lines changed: 43 additions & 0 deletions b/‎osv/malicious/npm/@adamallana0909/apple-research-test/MAL-0000-amazon-inspector-7d8bddd202efdf48.json‎
Lines changed: 43 additions & 0 deletions
@@ -1,5 +1,5 @@
 amazon-inspector:
-    IN-MAL-: IN-MAL-2026-000461.json
+    IN-MAL-: IN-MAL-2026-001146.json
 kam193:
     pypi/packages/malicious/osv/: b932b10941d7ade9418ead599627d27f09c7748a
     pypi/packages/pentest/osv/: 0d65fa30569acb74a4cd2f6968297f9cf794b510
 
@@ -0,0 +1,41 @@
+{
+  "modified": "2026-03-23T05:11:41Z",
+  "published": "2026-03-23T05:11:41Z",
+  "schema_version": "1.7.4",
+  "id": "",
+  "summary": "Malicious code in 8x8-developer-docs (npm)",
+  "details": "The package 8x8-developer-docs was found to contain malicious code.",
+  "affected": [
+    {
+      "package": {
+        "ecosystem": "npm",
+        "name": "8x8-developer-docs"
+      },
+      "versions": [
+        "2.0.0"
+      ]
+    }
+  ],
+  "credits": [
+    {
+      "name": "Amazon Inspector",
+      "type": "FINDER",
+      "contact": [
+        "actran@amazon.com"
+      ]
+    }
+  ],
+  "database_specific": {
+    "malicious-packages-origins": [
+      {
+        "source": "amazon-inspector",
+        "sha256": "830ce990639483b2f7a9ea4e000d63c831e0d58c94e718a1a20add6885cb93ef",
+        "import_time": "2026-03-23T05:14:30.457420594Z",
+        "modified_time": "2026-03-23T05:11:41Z",
+        "versions": [
+          "2.0.0"
+        ]
+      }
+    ]
+  }
+}
@@ -0,0 +1,41 @@
+{
+  "modified": "2026-03-23T05:11:41Z",
+  "published": "2026-03-23T05:11:41Z",
+  "schema_version": "1.7.4",
+  "id": "",
+  "summary": "Malicious code in @3stripes/api-client (npm)",
+  "details": "The package @3stripes/api-client was found to contain malicious code.",
+  "affected": [
+    {
+      "package": {
+        "ecosystem": "npm",
+        "name": "@3stripes/api-client"
+      },
+      "versions": [
+        "999.0.2"
+      ]
+    }
+  ],
+  "credits": [
+    {
+      "name": "Amazon Inspector",
+      "type": "FINDER",
+      "contact": [
+        "actran@amazon.com"
+      ]
+    }
+  ],
+  "database_specific": {
+    "malicious-packages-origins": [
+      {
+        "source": "amazon-inspector",
+        "sha256": "1644f08d12a97a4daeeca3e4195d91585bdbe1a8c2085fa918a92427cf1ee99f",
+        "import_time": "2026-03-23T05:14:33.837363085Z",
+        "modified_time": "2026-03-23T05:11:41Z",
+        "versions": [
+          "999.0.2"
+        ]
+      }
+    ]
+  }
+}
@@ -0,0 +1,41 @@
+{
+  "modified": "2026-03-23T05:11:41Z",
+  "published": "2026-03-23T05:11:41Z",
+  "schema_version": "1.7.4",
+  "id": "",
+  "summary": "Malicious code in @3stripes/auth (npm)",
+  "details": "The package @3stripes/auth was found to contain malicious code.",
+  "affected": [
+    {
+      "package": {
+        "ecosystem": "npm",
+        "name": "@3stripes/auth"
+      },
+      "versions": [
+        "999.0.2"
+      ]
+    }
+  ],
+  "credits": [
+    {
+      "name": "Amazon Inspector",
+      "type": "FINDER",
+      "contact": [
+        "actran@amazon.com"
+      ]
+    }
+  ],
+  "database_specific": {
+    "malicious-packages-origins": [
+      {
+        "source": "amazon-inspector",
+        "sha256": "152509a4bd82adf6364c22476faa63746b5ddc6649dd64a7fdf96ff5e67ebc13",
+        "import_time": "2026-03-23T05:14:08.409373092Z",
+        "modified_time": "2026-03-23T05:11:41Z",
+        "versions": [
+          "999.0.2"
+        ]
+      }
+    ]
+  }
+}
@@ -0,0 +1,41 @@
+{
+  "modified": "2026-03-23T05:11:41Z",
+  "published": "2026-03-23T05:11:41Z",
+  "schema_version": "1.7.4",
+  "id": "",
+  "summary": "Malicious code in @3stripes/common (npm)",
+  "details": "The package @3stripes/common was found to contain malicious code.",
+  "affected": [
+    {
+      "package": {
+        "ecosystem": "npm",
+        "name": "@3stripes/common"
+      },
+      "versions": [
+        "999.0.2"
+      ]
+    }
+  ],
+  "credits": [
+    {
+      "name": "Amazon Inspector",
+      "type": "FINDER",
+      "contact": [
+        "actran@amazon.com"
+      ]
+    }
+  ],
+  "database_specific": {
+    "malicious-packages-origins": [
+      {
+        "source": "amazon-inspector",
+        "sha256": "2cf6f6a1fb0e79c716386545df6b4a1e4df689bf6b35e741c28150cc3fad072a",
+        "import_time": "2026-03-23T05:14:18.518770026Z",
+        "modified_time": "2026-03-23T05:11:41Z",
+        "versions": [
+          "999.0.2"
+        ]
+      }
+    ]
+  }
+}
@@ -0,0 +1,41 @@
+{
+  "modified": "2026-03-23T05:11:41Z",
+  "published": "2026-03-23T05:11:41Z",
+  "schema_version": "1.7.4",
+  "id": "",
+  "summary": "Malicious code in @3stripes/helpers (npm)",
+  "details": "The package @3stripes/helpers was found to contain malicious code.",
+  "affected": [
+    {
+      "package": {
+        "ecosystem": "npm",
+        "name": "@3stripes/helpers"
+      },
+      "versions": [
+        "999.0.2"
+      ]
+    }
+  ],
+  "credits": [
+    {
+      "name": "Amazon Inspector",
+      "type": "FINDER",
+      "contact": [
+        "actran@amazon.com"
+      ]
+    }
+  ],
+  "database_specific": {
+    "malicious-packages-origins": [
+      {
+        "source": "amazon-inspector",
+        "sha256": "43a7574944c393165544faca6357fd6ce623ef66d2b9b367a3042f34eae4f81b",
+        "import_time": "2026-03-23T05:14:19.562673148Z",
+        "modified_time": "2026-03-23T05:11:41Z",
+        "versions": [
+          "999.0.2"
+        ]
+      }
+    ]
+  }
+}
@@ -0,0 +1,41 @@
+{
+  "modified": "2026-03-23T05:11:41Z",
+  "published": "2026-03-23T05:11:41Z",
+  "schema_version": "1.7.4",
+  "id": "",
+  "summary": "Malicious code in @3stripes/lib (npm)",
+  "details": "The package @3stripes/lib was found to contain malicious code.",
+  "affected": [
+    {
+      "package": {
+        "ecosystem": "npm",
+        "name": "@3stripes/lib"
+      },
+      "versions": [
+        "999.0.2"
+      ]
+    }
+  ],
+  "credits": [
+    {
+      "name": "Amazon Inspector",
+      "type": "FINDER",
+      "contact": [
+        "actran@amazon.com"
+      ]
+    }
+  ],
+  "database_specific": {
+    "malicious-packages-origins": [
+      {
+        "source": "amazon-inspector",
+        "sha256": "2cefc88878b1d12a39232d39387d16e564c71a9ce50047e025e7f26f848d4858",
+        "import_time": "2026-03-23T05:14:15.062538596Z",
+        "modified_time": "2026-03-23T05:11:41Z",
+        "versions": [
+          "999.0.2"
+        ]
+      }
+    ]
+  }
+}
@@ -0,0 +1,41 @@
+{
+  "modified": "2026-03-23T05:11:41Z",
+  "published": "2026-03-23T05:11:41Z",
+  "schema_version": "1.7.4",
+  "id": "",
+  "summary": "Malicious code in @3stripes/ui (npm)",
+  "details": "The package @3stripes/ui was found to contain malicious code.",
+  "affected": [
+    {
+      "package": {
+        "ecosystem": "npm",
+        "name": "@3stripes/ui"
+      },
+      "versions": [
+        "999.0.2"
+      ]
+    }
+  ],
+  "credits": [
+    {
+      "name": "Amazon Inspector",
+      "type": "FINDER",
+      "contact": [
+        "actran@amazon.com"
+      ]
+    }
+  ],
+  "database_specific": {
+    "malicious-packages-origins": [
+      {
+        "source": "amazon-inspector",
+        "sha256": "3319f763eb66b1fadca0f6bc56787fa08c4ef40209f072ba65dd6cdb628bf66c",
+        "import_time": "2026-03-23T05:14:28.238905711Z",
+        "modified_time": "2026-03-23T05:11:41Z",
+        "versions": [
+          "999.0.2"
+        ]
+      }
+    ]
+  }
+}
@@ -0,0 +1,41 @@
+{
+  "modified": "2026-03-23T05:11:41Z",
+  "published": "2026-03-23T05:11:41Z",
+  "schema_version": "1.7.4",
+  "id": "",
+  "summary": "Malicious code in @3stripes/utils (npm)",
+  "details": "The package @3stripes/utils was found to contain malicious code.",
+  "affected": [
+    {
+      "package": {
+        "ecosystem": "npm",
+        "name": "@3stripes/utils"
+      },
+      "versions": [
+        "999.0.2"
+      ]
+    }
+  ],
+  "credits": [
+    {
+      "name": "Amazon Inspector",
+      "type": "FINDER",
+      "contact": [
+        "actran@amazon.com"
+      ]
+    }
+  ],
+  "database_specific": {
+    "malicious-packages-origins": [
+      {
+        "source": "amazon-inspector",
+        "sha256": "a35a49fa45b490839a3f7671aed0d41c821f7a2925a015debe9f168e09476451",
+        "import_time": "2026-03-23T05:14:29.701110969Z",
+        "modified_time": "2026-03-23T05:11:41Z",
+        "versions": [
+          "999.0.2"
+        ]
+      }
+    ]
+  }
+}
@@ -0,0 +1,43 @@
+{
+  "modified": "2026-03-23T05:11:41Z",
+  "published": "2026-03-23T05:11:41Z",
+  "schema_version": "1.7.4",
+  "id": "",
+  "summary": "Malicious code in @adamallana0909/apple-research-test (npm)",
+  "details": "The package @adamallana0909/apple-research-test was found to contain malicious code.",
+  "affected": [
+    {
+      "package": {
+        "ecosystem": "npm",
+        "name": "@adamallana0909/apple-research-test"
+      },
+      "versions": [
+        "99.9.46",
+        "99.9.30"
+      ]
+    }
+  ],
+  "credits": [
+    {
+      "name": "Amazon Inspector",
+      "type": "FINDER",
+      "contact": [
+        "actran@amazon.com"
+      ]
+    }
+  ],
+  "database_specific": {
+    "malicious-packages-origins": [
+      {
+        "source": "amazon-inspector",
+        "sha256": "7d8bddd202efdf484dda4f9ff697fb7eab0e1227f76c736d92e6af21a85b89fe",
+        "import_time": "2026-03-23T05:14:31.816313792Z",
+        "modified_time": "2026-03-23T05:11:41Z",
+        "versions": [
+          "99.9.46",
+          "99.9.30"
+        ]
+      }
+    ]
+  }
+}