{"schema_version":"1.7.3","id":"MAL-2025-48092","published":"2025-10-08T10:12:19Z","modified":"2025-10-27T18:09:48Z","summary":"Malicious code in @aviatrixdev/flight-suit1 (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: ossf-package-analysis (f67f0297879682bb09001ab95a186ca13c641603c6a4694b81972b68d8a7b55d)\nThe OpenSSF Package Analysis project identified '@aviatrixdev/flight-suit1' @ 1.1.25050 (npm) as malicious.\n\nIt is considered malicious because:\n\n- The package communicates with a domain associated with malicious activity.\n\n- The package executes one or more commands associated with malicious behavior.\n","affected":[{"package":{"name":"@aviatrixdev/flight-suit1","ecosystem":"npm","purl":"pkg:npm/%40aviatrixdev/flight-suit1"},"versions":["1.1.25050","1.1.25049"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/@aviatrixdev/flight-suit1/MAL-2025-48092.json"}}],"database_specific":{"malicious-packages-origins":[{"import_time":"2025-10-08T10:38:04.808820905Z","modified_time":"2025-10-08T10:12:19Z","sha256":"f67f0297879682bb09001ab95a186ca13c641603c6a4694b81972b68d8a7b55d","source":"ossf-package-analysis","versions":["1.1.25050"]},{"id":"RLMA-2025-05232","import_time":"2025-10-27T18:08:51.280356455Z","modified_time":"2025-10-23T19:18:24Z","sha256":"70bf441576f4e5a882819ca4a28402a9ac4fff6a26ef02d23e8a28328ef04e4a","source":"reversing-labs","versions":["1.1.25049","1.1.25050"]}]},"credits":[{"name":"Amazon Inspector","contact":["actran@amazon.com"],"type":"FINDER"},{"name":"OpenSSF: Package Analysis","contact":["https://github.com/ossf/package-analysis","https://openssf.slack.com/channels/package_analysis"],"type":"FINDER"},{"name":"ReversingLabs","contact":["https://www.reversinglabs.com"],"type":"FINDER"}]}