SCANNING marak/colors.js...
get colors in your node.js console
Maintainer Marak Squires intentionally introduced an infinite loop in colors.js v1.4.44-liberty-2 and wiped faker.js, breaking thousands of downstream projects. Protest against unpaid OSS work.
Source →This report is generated on demand by querying the GitHub API for repository metadata and published security advisories, then cross-referencing our curated database of known supply-chain incidents (xz-utils, event-stream, ua-parser-js, colors.js, tj-actions, Codecov, and more). Results are cached for 24 hours. We do not scan repository code or dependencies — for that, see Snyk or Socket. Verdict: CLEAN ≥80, CAUTION 50–79, COMPROMISED<50.
Repo looks clean but the live deployment might still be exposing headers, CORS, or SSL misconfigurations.
SCAN A URL →