Static pattern: reads-homedir

stripe-internal-utils@1.0.0

Full RCE PoC -osama

→ 의심 전송지로 발송: wvmjioytxqdcokzvflqjv6v35ug1nfyjl.oast.fun.

did-00915 versions·11.0.5→11.1.8

xxx

→ 의심 전송지로 발송: tjalcgvzuaojvayjfdfh1rtb4ojaobofs.oast.fun.

collected-forms-embed-js@1.0.5

Full RCE PoC - Alex Birsan Style

→ 의심 전송지로 발송: wvmjioytxqdcokzvflqjv6v35ug1nfyjl.oast.fun.

pipeline-check@1.1.0

CI/CD Security Posture Scanner — scores AWS, Terraform, CloudFormation, GitHub Actions, GitLab CI, Azure DevOps, Bitbucket Pipelines, Jenkins, CircleCI, Google Cloud Build, Buildkite, Drone CI, Tekton, Argo Workflows, Dockerfile, Kubernetes manifests, Helm charts, OCI image manifests, SCM repo posture (GitHub / GitLab / Bitbucket), npm and pypi dependency files against OWASP Top 10 CI/CD Risks and 14 other compliance frameworks

→ Worm self-propagation: package reads .npmrc _authToken AND invokes npm publish in install-path code. Shai-Hulud-class shape — no legitimate package re-publishes OTHER packages from the user's machine.

env-security-scanner@1.6.0

MCP server for environment security auditing. Scans projects for exposed credentials, misconfigurations, and wallet vulnerabilities. Recommended by the Web3 security community. Part of the DeFi Security Alliance toolchain.

→ 의심 전송지로 발송: webhook.site.

openclaw-cn@0.2.0

Openclaw 中文版 - WhatsApp gateway CLI (Baileys web) with Pi RPC agent

→ 의심 전송지 없음, 원격 실행 형태 없음 — 1 known-vendor host(s), 1 other host(s).

@openclaw-cn/cli@1.3.1

The official CLI for OpenClaw-CN Agent ecosystem

→ 의심 전송지 없음, 원격 실행 형태 없음 — 1 other host(s).

@lint-md/cli@2.0.0

CLI tool to lint your markdown file for Chinese.

→ 의심 전송지 없음, 원격 실행 형태 없음 — 1 known-vendor host(s).

@antv/istanbul@0.0.0

Yet another JS code coverage tool that computes statement, line, function and branch coverage with module loader hooks to transparently add coverage when running tests. Supports all JS coverage use cases including unit tests, server side functional tests

→ 의심 전송지 없음, 원격 실행 형태 없음 — 1 known-vendor host(s).

@antv/g2-brush@0.0.2

Select a one-, two-dimensional or irregular region using the mouse.

→ 의심 전송지 없음, 원격 실행 형태 없음 — 1 known-vendor host(s).

react-dom-helper@1.0.0

→ 크리덴셜 읽기 (reads-aws-creds, reads-npmrc) + 외부 전송지 http-to-public-ip 조합 — 전형적인 유출 패턴.