@img/sharp-libvips-linux-arm@1.2.3 - Package Insights

@img/sharp-libvips-linux-arm

poor security hygiene

1.2.3201115Source

Vulnerabilities

OpenSSF Scorecard

0.0

Overall security score out of 10

License

LGPL-3.0-or-later

View full analysis

Summary

The package contains a pre-compiled binary, a valid use case. The extension mismatch is likely due to versioning. Not classified as malware.

Details

The package contains a shared object file (libvips-cpp.so.8.17.2) which is a pre-compiled binary, a valid use case for embedding executables. The extension mismatch is likely due to versioning. Without further evidence of malicious behavior, it's not classified as malware.

Evidences

File	Title	Confidence
package/lib/libvips-cpp.so.8.17.2	Embedded Executable	Medium
package/lib/libvips-cpp.so.8.17.2	Extension Mismatch	Low

Analysis performed at Sep 17, 2025, 10:35 AMAnalysis by