Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Identify suspicious version numbers #502

Open
christophetd opened this issue Dec 18, 2024 · 5 comments
Open

Identify suspicious version numbers #502

christophetd opened this issue Dec 18, 2024 · 5 comments
Labels
ecosystem/npm ecosystem/pypi kind/heuristic

Comments

@christophetd
Copy link
Contributor

Such as 999.9.9, very large numbers (more than 4 digits without a dot)
@Taiki-San
Copy link
Contributor

This would match year-based versioning, no? 2024.12?

@sobregosodd
Copy link
Contributor

I'm not so sure about this one, I don't see how this could determine if a package is malicious or risky based on this

@christophetd
Copy link
Contributor Author

Probably 5-6 digits then. Need to check the data, but I doubt we have a lot of legit packages with a single version numbered 9999999999

@sobregosodd
Copy link
Contributor

Let's look at the data first, I've seen several legit packages with date-like versioning, and non other semver approaches.
If we consider it makes sense, we should replace release_zero

@netcode
Copy link
Member

netcode commented Dec 23, 2024

If the concern is the FP Lets run query against our DB and check the result.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
ecosystem/npm ecosystem/pypi kind/heuristic
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@christophetd @netcode @Taiki-San @sobregosodd