{"package":"fs","ecosystem":"npm","latest_version":"0.0.1-security","description":"This package name is not currently in use, but was formerly occupied by another package. To avoid malicious use, npm is hanging on to the package name, but loosely, and we'll probably give it to you if you want it.","license":"ISC","homepage":"https://github.com/npm/security-holder#readme","repository":"https://github.com/npm/security-holder","downloads_weekly":1974982,"health":{"score":47,"risk":"high","breakdown":{"maintenance":0,"popularity":17,"security":25,"maturity":3,"community":2},"deprecated":false,"max_score":100},"vulnerabilities":{"count":1,"critical":0,"high":0,"medium":0,"low":1,"details":[{"vuln_id":"MAL-2025-21003","severity":"unknown","summary":"Malicious code in fs (npm)","affected_versions":">=0","fixed_version":null,"source":"osv","published_at":"2025-08-14T18:52:04Z"}]},"versions":{"latest":"0.0.1-security","total_count":3,"recent":["0.0.1-security","0.0.0","0.0.2"]},"metadata":{"deprecated":false,"deprecated_message":null,"maintainers_count":1,"first_published":"2014-06-02T02:18:51.732Z","last_published":"2016-08-23T17:56:58.976Z","dependencies_count":0,"dependencies":[]},"recommendation":{"action":"safe_to_use","issues":[],"use_version":"0.0.1-security","version_hint":null,"summary":"fs@0.0.1-security is safe to use (health: 47/100)"},"requested_version":null,"_cache":"miss","_response_ms":756,"_powered_by":"depscope.dev — free package intelligence for AI agents"}