Package CDN URL Flagged as Malicious by ESTsecurity #200519
Replies: 1 comment
-
|
Hey, this is almost certainly a false positive by ESTsecurity. It happens all the time with CDN links on VirusTotal, especially when using the latest tag in the URL. Security engines sometimes flag these because the dynamic nature of the link makes it look unpredictable, or a specific function name inside the SDK triggered a generic heuristic rule. |
Beta Was this translation helpful? Give feedback.
Uh oh!
There was an error while loading. Please reload this page.
-
🏷️ Discussion Type
Question
Body
I have observed that the CDN URL generated for an npm package is being flagged as malicious by the ESTsecurity engine when scanned through VirusTotal. Since the URL points to a legitimate package hosted via the npm ecosystem, could someone advise the cause and what action is required?
The affected CDN URL for reference : https://cdn.jsdelivr.net/npm/augnitoambientsdk@latest/dist/augnitoambientsdk.js
Beta Was this translation helpful? Give feedback.
All reactions