@rockawayx/utils
v0.0.1
Published
Security research - dependency confusion PoC
Readme
@rockawayx/utils - Security Research
This package was published as part of an authorized security assessment to demonstrate
a dependency confusion vulnerability affecting the @rockawayx npm scope.
The @rockawayx scope was unclaimed on npmjs.org while private packages with the same
scope names existed in RockawayX's internal repositories.
This is not malicious software. It contains only a benign notification that reports the hostname and timestamp to a security research callback server.
If you received this package unexpectedly, your build system may be vulnerable to dependency confusion attacks. Please contact your security team.
