Assign IDs

Author: github-actions

osv/malicious/.id-allocator

@@ -1 +1 @@
-7d206a06271539b5cfa9cb57703a8d39b82f3312282fb7ad30a445e6439a83f0
+bdc5e9b5610d87f4272a6dbc6a130981aa1a3d4bf8cfe89c8729455d76794299

osv/malicious/npm/datadog-checks-base/MAL-0000-ossf-package-analysis-c0928a2f92beacda.json renamed to osv/malicious/npm/datadog-checks-base/MAL-2025-192361.json

@@ -2,9 +2,9 @@
   "modified": "2025-12-06T17:35:39Z",
   "published": "2025-12-06T17:35:39Z",
   "schema_version": "1.7.4",
-  "id": "",
+  "id": "MAL-2025-192361",
   "summary": "Malicious code in datadog-checks-base (npm)",
-  "details": "The OpenSSF Package Analysis project identified 'datadog-checks-base' @ 50.0.0 (npm) as malicious.\n\nIt is considered malicious because:\n\n- The package communicates with a domain associated with malicious activity.\n\n- The package executes one or more commands associated with malicious behavior.\n",
+  "details": "\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: ossf-package-analysis (c0928a2f92beacda32023ac378b5df81feeffd91699903ea3500b46a6fcdefb9)\nThe OpenSSF Package Analysis project identified 'datadog-checks-base' @ 50.0.0 (npm) as malicious.\n\nIt is considered malicious because:\n\n- The package communicates with a domain associated with malicious activity.\n\n- The package executes one or more commands associated with malicious behavior.\n",
   "affected": [
     {
       "package": {
@@ -29,10 +29,10 @@
   "database_specific": {
     "malicious-packages-origins": [
       {
-        "source": "ossf-package-analysis",
-        "sha256": "c0928a2f92beacda32023ac378b5df81feeffd91699903ea3500b46a6fcdefb9",
         "import_time": "2025-12-06T17:35:49.839682673Z",
         "modified_time": "2025-12-06T17:35:39Z",
+        "sha256": "c0928a2f92beacda32023ac378b5df81feeffd91699903ea3500b46a6fcdefb9",
+        "source": "ossf-package-analysis",
         "versions": [
           "50.0.0"
         ]

osv/malicious/pypi/evil-rce2/MAL-0000-kam193-63a6a4d1f5ad55b3.json renamed to osv/malicious/pypi/evil-rce2/MAL-2025-192362.json

@@ -2,9 +2,9 @@
   "modified": "2025-12-06T16:25:44Z",
   "published": "2025-12-06T16:25:44Z",
   "schema_version": "1.7.4",
-  "id": "",
+  "id": "MAL-2025-192362",
   "summary": "Malicious code in evil-rce2 (PyPI)",
-  "details": "Running the module starts a reverse shell\n\n\n---\n\nCategory: MALICIOUS - The campaign has clearly malicious intent, like infostealers.\n\n\nCampaign: 2025-12-evil-rce\n\n\nReasons (based on the campaign):\n\n\n - The package contains code to create a reverse shell, allowing an attacker to execute any commands on the victim's machine.\n\n",
+  "details": "\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: kam193 (63a6a4d1f5ad55b3b2b836b95a7153f322bb4ea2f718f665a51a4a94f32576d5)\nRunning the module starts a reverse shell\n\n\n---\n\nCategory: MALICIOUS - The campaign has clearly malicious intent, like infostealers.\n\n\nCampaign: 2025-12-evil-rce\n\n\nReasons (based on the campaign):\n\n\n - The package contains code to create a reverse shell, allowing an attacker to execute any commands on the victim's machine.\n",
   "affected": [
     {
       "package": {
@@ -35,11 +35,11 @@
   "database_specific": {
     "malicious-packages-origins": [
       {
-        "source": "kam193",
-        "sha256": "63a6a4d1f5ad55b3b2b836b95a7153f322bb4ea2f718f665a51a4a94f32576d5",
-        "import_time": "2025-12-06T17:36:04.133462425Z",
         "id": "pypi/2025-12-evil-rce/evil-rce2",
+        "import_time": "2025-12-06T17:36:04.133462425Z",
         "modified_time": "2025-12-06T16:25:44.549237Z",
+        "sha256": "63a6a4d1f5ad55b3b2b836b95a7153f322bb4ea2f718f665a51a4a94f32576d5",
+        "source": "kam193",
         "versions": [
           "1.0.0"
         ]

osv/malicious/pypi/telco/MAL-0000-kam193-55c8199592663c3f.json renamed to osv/malicious/pypi/telco/MAL-2025-192363.json

@@ -2,9 +2,9 @@
   "modified": "2025-12-06T16:24:38Z",
   "published": "2025-12-06T16:24:38Z",
   "schema_version": "1.7.4",
-  "id": "",
+  "id": "MAL-2025-192363",
   "summary": "Malicious code in telco (PyPI)",
-  "details": "Running the module starts a reverse shell\n\n\n---\n\nCategory: MALICIOUS - The campaign has clearly malicious intent, like infostealers.\n\n\nCampaign: 2025-12-evil-rce\n\n\nReasons (based on the campaign):\n\n\n - The package contains code to create a reverse shell, allowing an attacker to execute any commands on the victim's machine.\n\n",
+  "details": "\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: kam193 (55c8199592663c3f388cba22988800084bbc3a5696279eb22c53e837c1d8ac40)\nRunning the module starts a reverse shell\n\n\n---\n\nCategory: MALICIOUS - The campaign has clearly malicious intent, like infostealers.\n\n\nCampaign: 2025-12-evil-rce\n\n\nReasons (based on the campaign):\n\n\n - The package contains code to create a reverse shell, allowing an attacker to execute any commands on the victim's machine.\n",
   "affected": [
     {
       "package": {
@@ -35,11 +35,11 @@
   "database_specific": {
     "malicious-packages-origins": [
       {
-        "source": "kam193",
-        "sha256": "55c8199592663c3f388cba22988800084bbc3a5696279eb22c53e837c1d8ac40",
-        "import_time": "2025-12-06T17:36:04.135980629Z",
         "id": "pypi/2025-12-evil-rce/telco",
+        "import_time": "2025-12-06T17:36:04.135980629Z",
         "modified_time": "2025-12-06T16:24:38.836736Z",
+        "sha256": "55c8199592663c3f388cba22988800084bbc3a5696279eb22c53e837c1d8ac40",
+        "source": "kam193",
         "versions": [
           "1.0.1"
         ]