@img/sharp-libvips-linux-arm64@1.2.3 - Package Insights

@img/sharp-libvips-linux-arm64

poor security hygiene

1.2.3201115Source

Vulnerabilities

OpenSSF Scorecard

0.0

Overall security score out of 10

License

LGPL-3.0-or-later

View full analysis

Summary

The package contains a shared object file, which is an executable and a common practice for libraries requiring native code. Not classified as malware.

Details

The package contains a shared object file (libvips-cpp.so.8.17.2) which is an executable. This is a common practice for libraries that require native code. The extension mismatch is minor and likely due to versioning. Without further evidence of malicious behavior, the package is not classified as malware.

Evidences

File	Title	Confidence
package/lib/libvips-cpp.so.8.17.2	Embedded Executable	Medium
package/lib/libvips-cpp.so.8.17.2	Extension Mismatch	Low

Analysis performed at Sep 17, 2025, 10:35 AMAnalysis by