From 3d8c743b7cc0014d1f36ed51245133c18f0c4e63 Mon Sep 17 00:00:00 2001
From: github-actions <github-actions@github.com>
Date: Wed, 8 Jan 2025 02:49:53 +0000
Subject: [PATCH] Ingest OSV - Cloud Storage

---
 config/start-keys.yaml                        |  2 +-
 ...ssf-package-analysis-3309a46cb7d7602b.json | 42 +++++++++++++++++++
 2 files changed, 43 insertions(+), 1 deletion(-)
 create mode 100644 osv/malicious/npm/@shadowbyte/checkout-telemetry-agent/MAL-0000-ossf-package-analysis-3309a46cb7d7602b.json

diff --git a/config/start-keys.yaml b/config/start-keys.yaml
index 156ce23921..71f48e2fec 100644
--- a/config/start-keys.yaml
+++ b/config/start-keys.yaml
@@ -1,5 +1,5 @@
 ossf-package-analysis:
-    confident/: confident/20250107/151756-npm-cursor-retrieval-1.0.1.json
+    confident/: confident/20250107/153545-npm-cursor-always-local-1.0.2.json
 reversing-labs:
     RLMA-: RLMA-2024-11212.json
     RLUA-: RLUA-2024-11114.json
diff --git a/osv/malicious/npm/@shadowbyte/checkout-telemetry-agent/MAL-0000-ossf-package-analysis-3309a46cb7d7602b.json b/osv/malicious/npm/@shadowbyte/checkout-telemetry-agent/MAL-0000-ossf-package-analysis-3309a46cb7d7602b.json
new file mode 100644
index 0000000000..c7e79a52d1
--- /dev/null
+++ b/osv/malicious/npm/@shadowbyte/checkout-telemetry-agent/MAL-0000-ossf-package-analysis-3309a46cb7d7602b.json
@@ -0,0 +1,42 @@
+{
+  "modified": "2025-01-08T02:43:20Z",
+  "published": "2025-01-08T02:43:20Z",
+  "schema_version": "1.5.0",
+  "id": "",
+  "summary": "Malicious code in @shadowbyte/checkout-telemetry-agent (npm)",
+  "details": "The OpenSSF Package Analysis project identified '@shadowbyte/checkout-telemetry-agent' @ 1.0.4 (npm) as malicious.\n\nIt is considered malicious because:\n\n- The package communicates with a domain associated with malicious activity.\n\n- The package executes one or more commands associated with malicious behavior.\n",
+  "affected": [
+    {
+      "package": {
+        "ecosystem": "npm",
+        "name": "@shadowbyte/checkout-telemetry-agent"
+      },
+      "versions": [
+        "1.0.4"
+      ]
+    }
+  ],
+  "credits": [
+    {
+      "name": "OpenSSF: Package Analysis",
+      "type": "FINDER",
+      "contact": [
+        "https://github.com/ossf/package-analysis",
+        "https://openssf.slack.com/channels/package_analysis"
+      ]
+    }
+  ],
+  "database_specific": {
+    "malicious-packages-origins": [
+      {
+        "source": "ossf-package-analysis",
+        "sha256": "3309a46cb7d7602b6b36a782d12752e0b69f409896afc9dd2d9fa4925d65b4a6",
+        "import_time": "2025-01-08T02:49:48.07845908Z",
+        "modified_time": "2025-01-08T02:43:20Z",
+        "versions": [
+          "1.0.4"
+        ]
+      }
+    ]
+  }
+}