Package Under Review
This package is under review. Identity is withheld until findings are confirmed. This is an automated assessment and findings are risk indicators, not confirmed threats.
2 threats detected
Downloads: <1K
pkg-dHV0aS1yb2ph...
npmwarnings detectedSecurity Scan Results
Warnings detected due to potential concerns
CVEs
1
Threats
2
Install Scripts
0
Risk Indicators
- •MAL-2025-59028: UNKNOWN
Confirmed Threats (2)
Typosquatting
confidence: 85%confirmed
Location: auto.js:10-16,99-100
packageData.name = `${randomName}-sukiwir`; //ganti "-notthedevs" dengan apapunSuspicious Install Scripts
confidence: 50%confirmed
Location: auto.js:110-127
exec('npm publish --access public', (error, stdout, stderr) => {Known CVE Vulnerabilities (1)
Malicious code in tuti-rojak36-sukiwir (npm)
brin Recommendations
- →This package has warnings detected. Evaluate the specific concerns before proceeding.
- →2 verified threat patterns detected. Review the specific findings and consider alternatives.
This is an automated, point-in-time assessment and may contain errors. Findings are risk indicators, not confirmed threats. Security posture may change over time. Maintainers can dispute findings via the brin review process.
Identity withheld
Pending verification process
Download Range
<1K
Last Scanned
2 days ago
Trust Score
55/100·Legitimacy signals, not safety
Capabilities
Filesystem
Reads & Writes files
Process
Spawns child processes