{"package":"jestjs","ecosystem":"npm","latest_version":"0.0.1-security","description":"security holding package","license":"","homepage":"","repository":"npm/security-holder","downloads_weekly":13,"health":{"score":null,"risk":"unknown","breakdown":{"maintenance":10,"popularity":0,"security":25,"maturity":0,"community":0},"deprecated":false,"max_score":100,"note":"Insufficient data to compute reliable score"},"vulnerabilities":{"count":1,"critical":0,"high":0,"medium":0,"low":1,"details":[{"vuln_id":"MAL-2025-23746","severity":"unknown","summary":"Malicious code in jestjs (npm)","affected_versions":">=0","fixed_version":null,"source":"osv","published_at":"2025-08-14T18:52:04Z"}],"actively_exploited_count":0,"likely_exploited_count":0},"versions":{"latest":"0.0.1-security","total_count":1,"recent":["0.0.1-security"]},"metadata":{"deprecated":false,"deprecated_message":null,"maintainers_count":0,"first_published":"2025-08-04T06:49:28.164Z","last_published":"2025-08-04T06:49:28.312Z","dependencies_count":0,"dependencies":[]},"bundle":null,"typescript":{"score":0,"has_types":false,"types_source":null,"types_package":null},"known_issues":{"bugs_count":0,"bugs_severity":{},"status_breakdown":{},"link":null,"scope":"none"},"recommendation":{"action":"do_not_use","summary":"Do not install. Package is flagged as malicious (advisory MAL-2025-23746).","version_hint":null},"requested_version":null,"_cache":"miss","_response_ms":3001,"_powered_by":"depscope.dev — free package intelligence for AI agents","typosquat":{"is_suspected":false},"maintainer_trust":{"available":false},"malicious":{"is_malicious":true,"advisory_id":"MAL-2025-23746","summary":"Malicious code in jestjs (npm)","action":"do_not_install","downloads_weekly_at_check":13},"scorecard":{"available":false},"quality":{"available":false}}