Cx7401d0a9-2786 @ Npm-ua-parser-js-0.7.29

**Checkmarx \(SCA\):** Vulnerable Package
**Vulnerability:** [Read More ](https://devhub.checkmarx.com/cve-details/Cx7401d0a9-2786) about Cx7401d0a9-2786
**Checkmarx Project:** [YSLCx/workshop\_demo](https://ast.checkmarx.net/projects/104dc642-f346-404e-9767-7c3bc21331a6/overview?branch=main)
**Repository URL:** [https://github.com/YSLCx/workshop\_demo](https://github.com/YSLCx/workshop_demo)
**Branch:** main
**Scan ID:** [85f0b871\-dd27\-420e\-95e1\-91e06302f579](https://ast.checkmarx.net/projects/104dc642-f346-404e-9767-7c3bc21331a6/scans?id=85f0b871-dd27-420e-95e1-91e06302f579&branch=main)


----
This package downloads a harmful file.
File hash:
```ea131cc5ccf6aa6544d6cb29cdb78130feed061d2097c6903215be1499464c2e```
### About

Using a dynamic analysis environment (also known as a Sandbox) we can monitor filesystem activity such as newly created files within the lifecycle of the code package.

Once new files are created, our technology analyzes each of the newly created files. In case a file is harmful, this risk is shown. 

![infographic](https://checkmarx-scs-cdn.s3.amazonaws.com/sca/infographics/harmful-file-download.png)





----
**Additional Info**


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Cx7401d0a9-2786 @ Npm-ua-parser-js-0.7.29 #19

About

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Cx7401d0a9-2786 @ Npm-ua-parser-js-0.7.29 #19

Description

About

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions