Socket
Socket
Sign inDemoInstall

Possible typosquat attack

Severity

Critical

Description

Package name is similar to other popular packages and may not be the package you want.

Suggestion

Use care when consuming similarly named packages and ensure that you did not intend to consume a different package. Malicious packages often publish using similar names as existing popular packages.

Packages with this alert

0auth

use dyma sso

dymafr
 published 1.0.4 •

0fetch

pi0
 published 0.0.0 •

1odash

The lodash hipsters won't leave you alone? Now you can use the original (and best) underscore.js while keeping those hipsters off your back!

1odash
 published 1.8.3 •

2d-algebra

Library for building expressions and computing derivatives

abersnaze
 published 4.0.0 •

2d-array

Transform a 1d array into a 2d array

domharrington
 published 1.0.0 •

3d-force

vasturiano
 published 0.0.1 •

3electron

Typo-guard package for electron

nornagon
 published 0.0.1-security •

3f-web3-core-helpers

3F-Web3 core tools helper for sub packages. This is an internal package.

dnice
 published 2.0.0 •

3f-web3-core-method

Creates the methods on the web3 modules. This is an internal package.

dnice
 published 2.0.0 •

3f-web3-core-subscriptions

Manages web3 subscriptions. This is an internal package.

dnice
 published 2.0.0 •
2345
449Next
SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap

About

Packages

Stay in touch

Get open source security insights delivered straight into your inbox.

  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc