Security researchers at Stacklok have identified that this package is malicious. This package is advertised as Express middleware, but if it is used in that manner, it could give an attacker the ability to run arbitrary code on your server. This package has been heavily obfuscated to avoid detection and identification of its malicious nature. Stacklok security researchers have identified this package and reported it to the GitHub Trust & Safety team. As a result, this package has been removed from the registry.
Package information
No Package Information available
Trusty Score
0
Trusty Score
How do we calculate this score?
We use statistical analysis to rate packages from 0-10. Higher ratings typically indicate safer packages.