Assign IDs

Author: github-actions

osv/malicious/.id-allocator

@@ -1 +1 @@
-3786c2d1841ca8f3b6a92eea5cbc47e133c7dd09a52696ad7e67b020f3362dd6
+2be4152af6527e7d33ba6a35ef642cfb2451d6af63fd86301ee8a91a3af17c7a

…3p/MAL-0000-kam193-6e199ebf30ba4e39.json …pypi/helloharry123p/MAL-2025-192379.jsonosv/malicious/pypi/helloharry123p/MAL-0000-kam193-6e199ebf30ba4e39.json renamed to osv/malicious/pypi/helloharry123p/MAL-2025-192379.json osv/malicious/pypi/helloharry123p/MAL-0000-kam193-6e199ebf30ba4e39.json renamed to osv/malicious/pypi/helloharry123p/MAL-2025-192379.json

@@ -2,9 +2,9 @@
   "modified": "2025-12-08T23:54:54Z",
   "published": "2025-12-08T23:54:54Z",
   "schema_version": "1.7.4",
-  "id": "",
-  "summary": "Pentesting or research code in helloharry123p (PyPI)",
-  "details": "Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose.\n\n\n---\n\nCategory: PROBABLY_PENTEST - Packages looking like typical pentest packages, but also anything that looks like testing, exploring pre-prepared kits, research \u0026 co, with clearly low-harm possibilities.\n\n\nCampaign: GENERIC-standard-pypi-install-pentest\n\n\nReasons (based on the campaign):\n\n\n - The package contains code to exfiltrate basic data from the system, like IP or username. It has a limited risk.\n\n\n - The package overrides the install command in setup.py to execute malicious code during installation.\n\n",
+  "id": "MAL-2025-192379",
+  "summary": "Malicious code in helloharry123p (PyPI)",
+  "details": "\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: kam193 (6e199ebf30ba4e39d4e6bd9fc4d31ffa9f0a7687e21f67e2e6e8c01e3f24717a)\nInstalling the package or importing the module exfiltrates basic information about the host, and the package has no other purpose.\n\n\n---\n\nCategory: PROBABLY_PENTEST - Packages looking like typical pentest packages, but also anything that looks like testing, exploring pre-prepared kits, research \u0026 co, with clearly low-harm possibilities.\n\n\nCampaign: GENERIC-standard-pypi-install-pentest\n\n\nReasons (based on the campaign):\n\n\n - The package contains code to exfiltrate basic data from the system, like IP or username. It has a limited risk.\n\n\n - The package overrides the install command in setup.py to execute malicious code during installation.\n",
   "affected": [
     {
       "package": {
@@ -35,11 +35,11 @@
   "database_specific": {
     "malicious-packages-origins": [
       {
-        "source": "kam193",
-        "sha256": "6e199ebf30ba4e39d4e6bd9fc4d31ffa9f0a7687e21f67e2e6e8c01e3f24717a",
-        "import_time": "2025-12-09T00:26:38.782652237Z",
         "id": "pypi/GENERIC-standard-pypi-install-pentest/helloharry123p",
+        "import_time": "2025-12-09T00:26:38.782652237Z",
         "modified_time": "2025-12-08T23:54:54.853753Z",
+        "sha256": "6e199ebf30ba4e39d4e6bd9fc4d31ffa9f0a7687e21f67e2e6e8c01e3f24717a",
+        "source": "kam193",
         "versions": [
           "0.1.0"
         ]