[Security Fix] Removed malicious package: colrs@1.0.0

[doria-bot]

🚨 Security Remediation: Malicious Package Intercepted

🛡️ Threat Summary

Doria has autonomously blocked the installation of co1ors. This package was flagged as a critical supply chain threat during the install-time static analysis and ML evaluation. It has been removed from the environment to prevent execution.

📊 Detection Metrics

1. ⚙️ Static Analysis (AST Engine)

• ❌ Verdict: Malicious shell execution detected.
• Details: A critical shell_execution via child_process.exec() was found in the postinstall hook, attempting to execute rm -rf / to recursively delete the root directory.

2. 🧠 Behavioral & Metadata Risk (Model 1)

• ⚠️ Verdict: High behavioral anomaly detected.
• Confidence: 85.0%
• Details: Model 1 detected significant behavioral anomalies, indicating a high probability of malicious intent beyond normal package operations.

3. 🏷️ Nomenclature Risk (Model 2)

• ⚠️ Verdict: High nomenclature risk identified.
• Confidence: 97.5%
• Details: Model 2 identified a very high probability of typosquatting or similar naming convention abuse, strongly suggesting a malicious attempt to mimic a legitimate package.

🤖 Automated Remediation

• Installation of co1ors blocked.
• Package removed from local cache and dependency tree.
• Recommended Action: Please review the safe alternative or correct package naming convention.

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud