Security Holding Package
The package [email protected] contained malicious code and was removed from the registry by the npm security team.
A placeholder was published to ensure users are not affected in the future.
is-node
1.0.2 latest securedDetect if current process is a node application or not.
Prerelease version
- metadata
The domain of the maintainer's email address ([email protected]) was re-registered after the latest release (1.0.2) of this package. It could be that an attacker leveraged the domain by re-registering it to compromise the maintainer's NPM account
Typosquat
- cybersquatting
Analysed versions
1 versions
1.0.2
22latest
Loaded 10 of 1
Behavioural monitoring and security for npm packages
Monitor every change in your dependency tree and automatically block malicious packages from entering your codebase. Safeguard your projects by using lstn in GitHub.