Is "jest-extended" on n8n Safe to Install?

simenb · n8n · v7.0.0

Additional Jest matchers

Risk Assessment

Analyzed
54.93
out of 100
MEDIUM

35 security findings detected across all analyzers

Severity Breakdown

0
Critical
0
High
27
Medium
8
Low
0
Info

Finding Categories

27
IoC Indicators

YARA Rules Matched

4 rules(7 hits)
postinstall network communication postinstall obfuscation postinstall file manipulation postinstall file download

About This Extension

Additional Jest matchers

Detailed Findings

8 total

YARA Rule Matches

4 rules

Indicators of Compromise

Network indicators, suspicious strings, and potential IoCs extracted during analysis

URLs
12
IP Addresses
2
Domains
14
Strings
27

All Indicators · 27

IP
detected Domain: mattphillips.io

XIOC detected Domain: mattphillips.io

extracted_from_files

Domain
detected Domain: contributing.md

XIOC detected Domain: contributing.md

extracted_from_files

URL
detected URL: https://jest-extended.jestcommunity.dev/docs/getting-started/setup)

XIOC detected URL: https://jest-extended.jestcommunity.dev/docs/getting-started/setup)

extracted_from_files

URL
detected URL: https://jest-extended.jestcommunity.dev/docs/matchers)

XIOC detected URL: https://jest-extended.jestcommunity.dev/docs/matchers)

extracted_from_files

URL
detected URL: https://github.com/jest-community/jest-extended#setup

XIOC detected URL: https://github.com/jest-community/jest-extended#setup

extracted_from_files

URL
detected URL: https://github.com/facebook/jest/pull/7621#issue-244312550

XIOC detected URL: https://github.com/facebook/jest/pull/7621#issue-244312550

extracted_from_files

URL
detected URL: https://img.shields.io/github/actions/workflow/status/jest-community/jest-extended/ci.yaml?style=flat-square)](https://github.com/jest-community/jest-extended/actions/workflows/ci.yaml)

XIOC detected URL: https://img.shields.io/github/actions/workflow/status/jest-community/jest-extended/ci.yaml?style=flat-square)](https://github.com/jest-community/jest-extended/actions/workflows/ci.yaml)

extracted_from_files

Domain
detected Domain: jest-extended.jestcommunity.dev

XIOC detected Domain: jest-extended.jestcommunity.dev

extracted_from_files

URL
detected URL: https://img.shields.io/npm/v/jest-extended.svg?style=flat-square)](https://www.npmjs.com/package/jest-extended)

XIOC detected URL: https://img.shields.io/npm/v/jest-extended.svg?style=flat-square)](https://www.npmjs.com/package/jest-extended)

extracted_from_files

URL
detected URL: https://img.shields.io/npm/dm/jest-extended.svg?style=flat-square)](http://npm-stat.com/charts.html?package=jest-extended&from=2017-09-14)

XIOC detected URL: https://img.shields.io/npm/dm/jest-extended.svg?style=flat-square)](http://npm-stat.com/charts.html?package=jest-extended&from=2017-09-14)

extracted_from_files

URL
detected URL: https://img.shields.io/npm/l/jest-extended.svg?style=flat-square)](https://github.com/jest-community/jest-extended/blob/main/LICENSE)

XIOC detected URL: https://img.shields.io/npm/l/jest-extended.svg?style=flat-square)](https://github.com/jest-community/jest-extended/blob/main/LICENSE)

extracted_from_files

URL
detected URL: https://img.shields.io/badge/PRs-welcome-brightgreen.svg?style=flat-square)](./CONTRIBUTING.md)

XIOC detected URL: https://img.shields.io/badge/PRs-welcome-brightgreen.svg?style=flat-square)](./CONTRIBUTING.md)

extracted_from_files

URL
detected URL: https://img.shields.io/badge/%F0%9F%92%A1-examples-ff615b.svg?style=flat-square)](https://github.com/jest-community/jest-extended/tree/main/examples)

XIOC detected URL: https://img.shields.io/badge/%F0%9F%92%A1-examples-ff615b.svg?style=flat-square)](https://github.com/jest-community/jest-extended/tree/main/examples)

extracted_from_files

Domain
detected Domain: object.prototype.hasownproperty.call

XIOC detected Domain: object.prototype.hasownproperty.call

extracted_from_files

Domain
detected Domain: exports.fail

XIOC detected Domain: exports.fail

extracted_from_files

Domain
detected Domain: 1.fail

XIOC detected Domain: 1.fail

extracted_from_files

Domain
detected Domain: type.name

XIOC detected Domain: type.name

extracted_from_files

Domain
detected Domain: expectederror.name

XIOC detected Domain: expectederror.name

extracted_from_files

Domain
detected Domain: object.hasownproperty.call

XIOC detected Domain: object.hasownproperty.call

extracted_from_files

IP
detected Email: [email protected]

XIOC detected Email: [email protected]

extracted_from_files

Domain
detected Domain: img.shields.io

XIOC detected Domain: img.shields.io

extracted_from_files

URL
detected URL: https://img.shields.io/codecov/c/github/jest-community/jest-extended.svg?style=flat-square)](https://codecov.io/github/jest-community/jest-extended)

XIOC detected URL: https://img.shields.io/codecov/c/github/jest-community/jest-extended.svg?style=flat-square)](https://codecov.io/github/jest-community/jest-extended)

extracted_from_files

Domain
detected Domain: github.com

XIOC detected Domain: github.com

extracted_from_files

Domain
detected Domain: codecov.io

XIOC detected Domain: codecov.io

extracted_from_files

Domain
detected Domain: www.npmjs.com

XIOC detected Domain: www.npmjs.com

extracted_from_files

Domain
detected Domain: npm-stat.com

XIOC detected Domain: npm-stat.com

extracted_from_files

URL
detected URL: https://jest-extended.jestcommunity.dev/docs/getting-started/install)

XIOC detected URL: https://jest-extended.jestcommunity.dev/docs/getting-started/install)

extracted_from_files

Security Analysis Summary

Security Analysis Overview

jest-extended is a n8n extension published by simenb. Version 7.0.0 has been analyzed by the Risky Plugins security platform, receiving a risk score of 54.93/100 (MEDIUM risk) based on 35 security findings.

Risk Assessment

This extension presents moderate security risk. Several findings were detected that may warrant attention. Users should carefully review the permissions and findings before installation.

Findings Breakdown

  • Medium: 27 finding(s)
  • Low: 8 finding(s)

What Was Analyzed

The security assessment covers multiple analysis categories:

  • Malware Detection: YARA rule matching against 2,400+ malware signatures
  • Secret Detection: Scanning for exposed API keys, tokens, and credentials
  • Static Analysis: Code-level security analysis for common vulnerability patterns
  • Network Analysis: Detection of suspicious network communications and endpoints
  • Obfuscation Detection: Identification of code obfuscation techniques

Developer Information

jest-extended is published by simenb on the n8n marketplace.

Recommendation

Exercise caution with this extension. Review the detailed findings and ensure the requested permissions align with the extension's stated functionality before installation.

Frequently Asked Questions

Similar Extensions

Related extensions from the same publisher or marketplace

jest-watch-typeahead

simenb

MEDIUM

jest-runner-eslint

simenb

MEDIUM

jest-watch-select-projects

simenb

MEDIUM

@lhi/n8m

lcanady

CRITICAL

@zilliz/milvus2-sdk-node

GitHub Actions

CRITICAL

@azure/msal-node

azuread

CRITICAL