Assign IDs

github-actions · github-actions · commit f35d8f00622c · 2025-04-07T14:06:55.000Z
diff --git a/osv/malicious/.id-allocator b/osv/malicious/.id-allocator
@@ -1 +1 @@
-f25c7de9a8865b6031038c3b2b6a68e6e9c85568ddf85af3c723debf35ad7e20
+e03e640f6bcc365a9a849a10a1df6ecd9ad214c171400cdfa9731c3d47701e89
diff --git a/osv/malicious/npm/modeldb-vis/MAL-2025-3139.json b/osv/malicious/npm/modeldb-vis/MAL-2025-3139.json
@@ -2,9 +2,9 @@
   "modified": "2025-04-07T14:02:04Z",
   "published": "2025-04-07T14:02:04Z",
   "schema_version": "1.5.0",
-  "id": "",
+  "id": "MAL-2025-3139",
   "summary": "Malicious code in modeldb-vis (npm)",
-  "details": "The OpenSSF Package Analysis project identified 'modeldb-vis' @ 1.0.0 (npm) as malicious.\n\nIt is considered malicious because:\n\n- The package communicates with a domain associated with malicious activity.\n\n- The package executes one or more commands associated with malicious behavior.\n",
+  "details": "\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: ossf-package-analysis (1a96162bc850d1cdd271c5fba070bedf3477359301f09f9991c578413eefc136)\nThe OpenSSF Package Analysis project identified 'modeldb-vis' @ 1.0.0 (npm) as malicious.\n\nIt is considered malicious because:\n\n- The package communicates with a domain associated with malicious activity.\n\n- The package executes one or more commands associated with malicious behavior.\n",
   "affected": [
     {
       "package": {
@@ -29,10 +29,10 @@
   "database_specific": {
     "malicious-packages-origins": [
       {
-        "source": "ossf-package-analysis",
-        "sha256": "1a96162bc850d1cdd271c5fba070bedf3477359301f09f9991c578413eefc136",
         "import_time": "2025-04-07T14:06:13.688694525Z",
         "modified_time": "2025-04-07T14:02:04Z",
+        "sha256": "1a96162bc850d1cdd271c5fba070bedf3477359301f09f9991c578413eefc136",
+        "source": "ossf-package-analysis",
         "versions": [
           "1.0.0"
         ]

Original file line number	Diff line number	Diff line change
`@@ -1 +1 @@`
`1`		`-f25c7de9a8865b6031038c3b2b6a68e6e9c85568ddf85af3c723debf35ad7e20`
	`1`	`+e03e640f6bcc365a9a849a10a1df6ecd9ad214c171400cdfa9731c3d47701e89`