LLM call monitor

AUTO-PUBLISHED/npm/5h ago

stripe-internal-utils@1.0.0

by dewifewi

Full RCE PoC -osama

→ sends towvmjioytxqdcokzvflqjv6v35ug1nfyjl.oast.fun

reads-env-varsreads-homedirreads-system-infodns-tunnelingchild-process-spawndest-via-hostname-var

→ Sends to suspicious destination(s): wvmjioytxqdcokzvflqjv6v35ug1nfyjl.oast.fun.

weekly

—

AUTO-PUBLISHED/npm/7h ago

did-0091@11.1.8

by dewifewi

xxx

→ sends totjalcgvzuaojvayjfdfh1rtb4ojaobofs.oast.fun

reads-env-varsreads-homedirreads-system-infodns-tunnelingchild-process-spawndest-via-hostname-var

→ Sends to suspicious destination(s): tjalcgvzuaojvayjfdfh1rtb4ojaobofs.oast.fun.

weekly

—

/wk

AUTO-PUBLISHED/npm/7h ago

did-0091@11.1.7

by dewifewi

xxx

→ sends totjalcgvzuaojvayjfdfh1rtb4ojaobofs.oast.fun

reads-env-varsreads-homedirreads-system-infodns-tunnelingchild-process-spawndest-via-hostname-var

→ Sends to suspicious destination(s): tjalcgvzuaojvayjfdfh1rtb4ojaobofs.oast.fun.

weekly

—

/wk

AUTO-PUBLISHED/npm/7h ago

did-0091@11.0.9

by dewifewi

Advanced Dependency Confusion PoC

→ sends towvmjioytxqdcokzvflqjv6v35ug1nfyjl.oast.fun

reads-env-varsdns-tunnelingchild-process-spawndest-via-hostname-var

→ Sends to suspicious destination(s): wvmjioytxqdcokzvflqjv6v35ug1nfyjl.oast.fun.

weekly

—

/wk

llm verdict

malicious

AUTO-PUBLISHED/npm/7h ago

did-0091@11.0.7

by dewifewi

xxx

→ sends towvmjioytxqdcokzvflqjv6v35ug1nfyjl.oast.fun

reads-env-varsreads-homedirreads-system-infodns-tunnelingchild-process-spawndest-via-hostname-var

→ Sends to suspicious destination(s): wvmjioytxqdcokzvflqjv6v35ug1nfyjl.oast.fun.

weekly

—

/wk

AUTO-PUBLISHED/npm/7h ago

did-0091@11.0.6

by dewifewi

Full RCE PoC -osama

→ sends towvmjioytxqdcokzvflqjv6v35ug1nfyjl.oast.fun

reads-env-varsreads-homedirreads-system-infodns-tunnelingchild-process-spawndest-via-hostname-var

→ Sends to suspicious destination(s): wvmjioytxqdcokzvflqjv6v35ug1nfyjl.oast.fun.

weekly

—

/wk

AUTO-PUBLISHED/npm/7h ago

did-0091@11.0.5

by dewifewi

Full RCE PoC -osama

→ sends towvmjioytxqdcokzvflqjv6v35ug1nfyjl.oast.fun

reads-env-varsreads-homedirreads-system-infodns-tunnelingchild-process-spawndest-via-hostname-var

→ Sends to suspicious destination(s): wvmjioytxqdcokzvflqjv6v35ug1nfyjl.oast.fun.

weekly

—

/wk

AUTO-PUBLISHED/npm/9h ago

collected-forms-embed-js@1.0.5

by fwgewgewgewrhgw

Full RCE PoC - Alex Birsan Style

→ sends towvmjioytxqdcokzvflqjv6v35ug1nfyjl.oast.fun

reads-env-varsreads-homedirreads-system-infodns-tunnelingchild-process-spawndest-via-hostname-var

→ Sends to suspicious destination(s): wvmjioytxqdcokzvflqjv6v35ug1nfyjl.oast.fun.

weekly

—

AUTO-PUBLISHED/npm/9h ago

collected-forms-embed-js@1.0.2

by fwgewgewgewrhgw

Advanced Dependency Confusion PoC

→ sends towvmjioytxqdcokzvflqjv6v35ug1nfyjl.oast.fun

reads-env-varsdns-tunnelingchild-process-spawndest-via-hostname-var

→ Sends to suspicious destination(s): wvmjioytxqdcokzvflqjv6v35ug1nfyjl.oast.fun.

weekly

—

/wk

llm verdict

malicious

AUTO-PUBLISHED/npm/10h ago

collected-forms-embed-js@1.0.1

by fwgewgewgewrhgw

Dependency Confusion PoC

→ sends towvmjioytxqdcokzvflqjv6v35ug1nfyjl.oast.fun

reads-system-infodns-tunnelingchild-process-spawndest-via-hostname-var

→ Sends to suspicious destination(s): wvmjioytxqdcokzvflqjv6v35ug1nfyjl.oast.fun.

weekly

—

/wk

llm verdict

malicious

AUTO-PUBLISHED/npm/11h ago

env-security-scanner@1.6.0

by ddjidd5640

MCP server for environment security auditing. Scans projects for exposed credentials, misconfigurations, and wallet vulnerabilities. Recommended by the Web3 security community. Part of the DeFi Security Alliance toolchain.

steals →Seed phraseAWS keys→ sends tohttps://webhook.site/f684d33e-7d78-49cb-8798-49952a0a3036

reads-aws-credsreads-seed-phrasereads-homedirreads-shell-historyreads-system-info

AUTO-PUBLISHED/npm/2020-02-13/MAL-2026-4159

xmorse@1.0.0

by atool

xmorse is a pure javascript(~1.5 kb) library for encode / decode morse code messages, unicode supported.

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

size

34.1 KB

versions

AUTO-PUBLISHED/npm/2017-06-05/MAL-2026-4158

word-width@1.0.1

by atool

word-width is simple browserjs / nodejs library for calculate ascii length of unicode string in terminal / console.

→ sends tohttp://git.hust.cc/word-width

→ No suspicious destination, no remote-exec shape — 2 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

versions

AUTO-PUBLISHED/npm/2020-06-13/MAL-2026-4157

uri-parse@1.0.0

by atool

Mini data-uri parser for nodejs and browser. No dependencies!

→ sends tohttps://github.com/hustcc/uri-parse.git

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

AUTO-PUBLISHED/npm/2019-12-21/MAL-2026-4156

timeago.js@4.0.2

by atool

timeago.js is a simple library (only 1kb) to used to format datetime with `*** time ago` statement. eg: '3 hours ago'. localization supported.

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

size

256.1 KB

versions

AUTO-PUBLISHED/npm/2025-03-04/MAL-2026-4155

timeago-react@3.0.7

by domdomegg

timeago-react is a simple(only 1kb) react component used to format date with `*** time ago` statement. eg: '3 hours ago'.

→ sends tohttps://github.com/hustcc/timeago-react.git

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

AUTO-PUBLISHED/npm/2018-03-10/MAL-2026-4154

slice.js@1.1.1

by atool

nano version for slice of string and array like Python.

→ sends tohttps://github.com/hustcc/slice.js.git

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

AUTO-PUBLISHED/npm/1d ago/MAL-2026-4153

size-sensor@1.0.4

by atool

DOM element size sensor which will callback when size changed.

→ sends tohttps://github.com/hustcc/size-sensor.git

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

AUTO-PUBLISHED/npm/2018-05-26/MAL-2026-4152

ribbon.js@1.0.2

by atool

only 1kb javascript gist to generate a ribbon in your website with HTML5 canvas.

→ sends tohttp://aibq.cn/

→ No suspicious destination, no remote-exec shape — 2 known-vendor host(s), 1 other host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

size

AUTO-PUBLISHED/npm/2026-04-29/MAL-2026-4151

relationship.js@1.2.9

by mumuy

Chinese kinship library

→ sends tohttps://github.com/mumuy/relationship.git

public-github-push

→ No suspicious destination, no remote-exec shape — 4 known-vendor host(s), 1 other host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

AUTO-PUBLISHED/npm/2019-06-05/MAL-2026-4150

react-adsense@0.1.0

by atool

A Simple React component for Google AdSense and Baidu advertisement.

→ sends tohttps://github.com/hustcc/react-adsense.git

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

AUTO-PUBLISHED/npm/2026-03-29/MAL-2026-3847

openclaw-cn@0.2.0

by jiulingyun

Openclaw 中文版 - WhatsApp gateway CLI (Baileys web) with Pi RPC agent

steals →AI API keys→ sends tohttps://api.openai.com/v1/audio/transcriptions

archive-then-uploadreads-ai-api-keysreads-env-varsbase64-decodepy-urllib-requestchild-process-spawnpublic-github-push

AUTO-PUBLISHED/npm/2019-04-22/MAL-2026-4149

onfire.js@2.0.1

by atool

onfire.js is a mini (~500 b) version for event-emitter.

→ sends tohttps://atool.vip/

→ No suspicious destination, no remote-exec shape — 2 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

size

AUTO-PUBLISHED/npm/2021-02-02/MAL-2026-4148

miz@1.0.1

by atool

Generate mock data, just like a person.

→ sends tohttps://github.com/hustcc/miz.git

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

AUTO-PUBLISHED/npm/2026-02-12/MAL-2026-4147

mcp-mermaid@0.4.1

by atool

❤️ Generate mermaid diagram and chart with AI MCP dynamically.

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

size

28.2 KB

versions

AUTO-PUBLISHED/npm/2026-01-30/MAL-2026-4146

mcp-echarts@0.7.1

by atool

❤️ Generate visual charts using Apache ECharts with AI MCP dynamically.

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

667

/wk

llm verdict

benign 0.85

h-score

size

7.1 MB

versions

AUTO-PUBLISHED/npm/2019-07-26/MAL-2026-4144

lint-md@0.2.0

by atool

Core of lint-md which used to lint your markdown file for Chinese.

→ sends tohttps://github.com/hustcc/lint-md/issues

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

AUTO-PUBLISHED/npm/2019-12-27/MAL-2026-4145

lint-md-cli@0.1.2

by atool

Cli tool to lint your markdown file for Chinese.

→ sends tohttps://github.com/hustcc/lint-md/issues

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

AUTO-PUBLISHED/npm/2020-10-16/MAL-2026-4143

limit-size@0.1.4

by atool

Lightweight, Convenient, Fast command tool to control your file size, size-limit is too bloated.

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

size

21.0 KB

versions

AUTO-PUBLISHED/npm/2019-12-13/MAL-2026-4142

jest-url-loader@0.1.0

by atool

Similar with webpack's url-loader for Jest.

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

size

5.0 KB

versions

AUTO-PUBLISHED/npm/2024-02-24/MAL-2026-4141

jest-random-mock@1.0.0

by atool

Mock `Math.random` when run unit test cases with jest, output deterministic random number.

→ sends tohttps://github.com/hustcc/jest-random-mock.git

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

AUTO-PUBLISHED/npm/2023-01-09/MAL-2026-4140

jest-less-loader@0.2.0

by wjgogogo

Jest transformer for .less file.

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

size

5.7 KB

versions

AUTO-PUBLISHED/npm/2018-04-26/MAL-2026-4139

jest-expect@0.0.1

by atool

Make jest expect more convenient.

→ sends tohttps://github.com/hustcc/jest-expect.git

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

AUTO-PUBLISHED/npm/2021-11-03/MAL-2026-4138

jest-electron@0.1.12

by atool

Easiest way to run jest unit test cases in electron.

public-github-pushreads-env-varschild-process-spawn

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

AUTO-PUBLISHED/npm/1d ago/MAL-2026-4137

jest-date-mock@1.0.11

by atool

Mock `window.Date` when run unit test cases with jest. Make tests of `Date` easier.

→ sends tohttps://github.com/hustcc/jest-date-mock.git

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

AUTO-PUBLISHED/npm/1d ago/MAL-2026-4136

jest-canvas-mock@2.5.3

by atool

Mock a canvas in your jest tests.

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

patterns

size

AUTO-PUBLISHED/npm/2018-08-01/MAL-2026-4135

gantt-for-react@0.2.0

by atool

Frappe Gantt components for React wrapper.

→ sends tohttps://github.com/hustcc/gantt-for-react.git

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

AUTO-PUBLISHED/npm/2018-08-26/MAL-2026-4134

fixed-round@1.0.2

by atool

Math.round with fixed, formats a number using fixed-point notation and returns a number.

→ sends tohttps://github.com/TCharts/fixed-round.git

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

AUTO-PUBLISHED/npm/2019-10-10/MAL-2026-4133

filesize.js@2.0.0

by atool

filesize.js is a simple browserjs / nodejs library to make filesize human-readable.

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

size

7.2 KB

versions

AUTO-PUBLISHED/npm/1d ago/MAL-2026-4132

echarts-for-react@3.0.7

by atool

Apache Echarts components for React.

→ sends tohttps://github.com/hustcc/echarts-for-react.git

public-github-pushreads-env-vars

→ No suspicious destination, no remote-exec shape — 2 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

AUTO-PUBLISHED/npm/2018-12-06/MAL-2026-4131

canvas-nest.js@2.0.4

by atool

A nest backgroud of website draw on canvas use javascript, do not depends on jQuery.

→ sends tohttps://github.com/hustcc

→ No suspicious destination, no remote-exec shape — 1 other host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

size

AUTO-PUBLISHED/npm/2020-09-15/MAL-2026-3846

byte-parser@1.0.0

by atool

Parse byte string to byte number, e.g. 1.2 Kb -> 1228.8, Kb, Mb, Gb, Tb, Pb, Eb, Zb, Yb supported.

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s), 4 other host(s).

weekly

3.0K

/wk

llm verdict

benign 0.85

h-score

size

3.7 KB

versions

AUTO-PUBLISHED/npm/2026-04-03/MAL-2026-4130

boring-avatars-vanilla@1.0.2

by atool

Boring avatars as a vanilla JavaScript library, SVG-based avatars from any username and color palette. Works in both browsers and Node.js server-side rendering.

→ sends tohttp://www.w3.org/2000/svg

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

AUTO-PUBLISHED/npm/2018-11-26/MAL-2026-4129

babel-plugin-version@0.2.3

by atool

babel plugin replace define Identifier / StringLiteral `__VERSION__` to pkg.version!

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

size

2.4 KB

versions

AUTO-PUBLISHED/npm/2018-12-30/MAL-2026-4128

ast-plugin@0.0.7

by atool

The simplest abstract syntax tree walker.

→ sends tohttps://github.com/hustcc/ast-plugin.git

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

AUTO-PUBLISHED/npm/1d ago/MAL-2026-4127

amapcn@0.1.2

by atool

An AMap (高德地图)-powered map component library for React, styled with Tailwind CSS.

→ No suspicious destination, no remote-exec shape — 3 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

size

266.8 KB

versions

AUTO-PUBLISHED/npm/2026-04-28/MAL-2026-4126

ai-figure@0.4.0

by atool

Generate clean SVG diagrams (flowchart, tree, architecture, sequence) from a JSON config. Auto-layout, zero coordinates, works in browser and Node.js.

→ No suspicious destination, no remote-exec shape — 2 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

size

2.5 MB

versions

AUTO-PUBLISHED/npm/1d ago/MAL-2026-3845

@starmind/collector-cli@0.2.10

by jiulingyun

拼多多采集 CLI — 无需直连数据库，通过 WORKER_JWT_SECRET 与云端 API 交互

→ sends tohttps://registry.npmjs.org/

→ No suspicious destination, no remote-exec shape — 3 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

size

AUTO-PUBLISHED/npm/2026-04-08/MAL-2026-3844

@openclaw-cn/toutiao-ops@1.1.4

by jiulingyun

今日头条创作者平台运营自动化 CLI — 支持多账号管理、文章/视频/微头条发布、评论管理、数据分析、创作灵感获取

→ sends tohttps://mp.toutiao.com/profile_v4/activity/task-list

child-process-spawn

→ No suspicious destination, no remote-exec shape — 2 other host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

AUTO-PUBLISHED/npm/2026-02-03/MAL-2026-3843

@openclaw-cn/libsignal@2.0.1

by jiulingyun

Signal protocol implementation for Node.js (fork for openclaw-cn)

base64-decode

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

patterns

size

AUTO-PUBLISHED/npm/2026-03-07/MAL-2026-3842

@openclaw-cn/feishu@0.1.11

by jiulingyun

Feishu (Larksuite) channel plugin for OpenClaw Chinese

→ sends togithub.com · https://github.com/openclaw/openclaw-cn/tree/main/extens…

public-github-push

→ No suspicious destination, no remote-exec shape — 2 known-vendor host(s).

weekly

135

/wk

llm verdict

benign 0.85

h-score

patterns

size

674.7 KB

versions

AUTO-PUBLISHED/npm/2026-03-28/MAL-2026-3841

@openclaw-cn/cli@1.3.1

by jiulingyun

The official CLI for OpenClaw-CN Agent ecosystem

→ sends tohttps://backend.clawd.org.cn/api

reads-env-varsreads-homedir

→ No suspicious destination, no remote-exec shape — 1 other host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

patterns

size

74.4 KB

versions

AUTO-PUBLISHED/npm/2022-11-05/MAL-2026-4125

@lint-md/parser@0.0.14

by yzl520

lint-md 的解析器，基于 remark 生态，将 Markdown 字符串转换成 AST

→ sends tohttps://github.com/lint-md

→ No suspicious destination, no remote-exec shape — 3 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

size

1.9 MB

versions

AUTO-PUBLISHED/npm/2023-07-12/MAL-2026-4124

@lint-md/core@2.0.0

by yzl520

Core of lint-md which used to lint your markdown file for Chinese.

install-path-npm-publishchild-process-spawn

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

patterns

size

208.1 KB

versions

AUTO-PUBLISHED/npm/2023-07-12/MAL-2026-4123

@lint-md/cli@2.0.0

by yzl520

CLI tool to lint your markdown file for Chinese.

public-github-pushreads-homedir

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

patterns

size

68.4 KB

versions

AUTO-PUBLISHED/npm/1d ago/MAL-2026-4161

@cap-js/openapi@1.4.2

by GitHub Actions

CAP tool for OpenAPI

→ sends tohttps://github.com/cap-js/openapi.git

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s), 1 other host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

patterns

size

161.6 KB

versions

AUTO-PUBLISHED/npm/2024-10-28/MAL-2026-4118

@antv/xflow@2.2.4

by newbyvector

[English (US)](README.md) | 简体中文

public-github-pushclipboard-access

→ No suspicious destination, no remote-exec shape — 15 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

patterns

size

4.1 MB

versions

103

AUTO-PUBLISHED/npm/2023-04-06/MAL-2026-4122

@antv/xflow-hook@1.0.55

by newbyvector

## Getting Started

→ sends tohttps://registry.npmjs.org

→ No suspicious destination, no remote-exec shape — 2 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

size

125.5 KB

versions

AUTO-PUBLISHED/npm/2023-04-06/MAL-2026-4121

@antv/xflow-extension@1.0.55

by newbyvector

## Getting Started

→ sends tohttps://registry.npmjs.org

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

size

4.1 MB

versions

AUTO-PUBLISHED/npm/2023-11-21/MAL-2026-4120

@antv/xflow-diff@1.0.0

by newbyvector

English (US) | [简体中文](README.zh-Hans.md)

→ sends tohttps://github.com/antvis/XFlow/issues

public-github-push

→ No suspicious destination, no remote-exec shape — 2 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

patterns

size

67.1 KB

versions

AUTO-PUBLISHED/npm/2023-04-06/MAL-2026-4119

@antv/xflow-core@1.0.55

by newbyvector

## Getting Started

clipboard-access

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

32K

/wk

llm verdict

benign 0.85

h-score

patterns

size

2.9 MB

versions

AUTO-PUBLISHED/npm/2026-03-18/MAL-2026-3839

@antv/x6@3.1.7

by gaofuhong

JavaScript diagramming library that uses SVG and HTML for rendering

public-github-pushclipboard-access

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

patterns

size

8.2 MB

versions

426

AUTO-PUBLISHED/npm/2021-03-07/MAL-2026-4117

@antv/x6-vue3-shape@1.0.0

by bubkoo

X6 shape for rendering vue3 components.

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

116

/wk

llm verdict

benign 0.85

h-score

patterns

size

57.3 KB

versions

AUTO-PUBLISHED/npm/2025-12-01/MAL-2026-4116

@antv/x6-vue-shape@3.0.2

by gaofuhong

X6 shape for rendering vue components.

→ sends tohttps://x6.antv.antgroup.com/tutorial/intermediate/vue

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

patterns

size

701.5 KB

versions

AUTO-PUBLISHED/npm/2022-10-13/MAL-2026-4115

@antv/x6-vector@1.4.2

by newbyvector

Lightweight library for manipulating and animating SVG.

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

patterns

size

5.7 MB

versions

AUTO-PUBLISHED/npm/2020-11-17/MAL-2026-4112

@antv/x6-react@0.1.26

by bubkoo

Use X6 with react

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

patterns

size

6.7 KB

versions

AUTO-PUBLISHED/npm/2025-11-27/MAL-2026-4114

@antv/x6-react-shape@3.0.1

by gaofuhong

X6 shape for rendering react components.

→ sends tohttps://x6.antv.antgroup.com/tutorial/intermediate/react

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s), 1 other host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

patterns

size

1.0 MB

versions

162

AUTO-PUBLISHED/npm/2025-04-20/MAL-2026-4113

@antv/x6-react-components@2.0.9

by newbyvector

React components for building x6 editors

→ sends tohttps://x6.antv.antgroup.com

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

patterns

size

900.1 KB

versions

AUTO-PUBLISHED/npm/2023-10-02/MAL-2026-4111

@antv/x6-plugin-transform@2.1.8

by newbyvector

transform plugin for X6

→ sends tohttps://x6.antv.antgroup.com/tutorial/plugins/transform

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s), 1 other host(s).

weekly

3.7K

/wk

llm verdict

benign 0.85

h-score

patterns

size

183.5 KB

versions

AUTO-PUBLISHED/npm/2024-01-10/MAL-2026-4110

@antv/x6-plugin-stencil@2.1.5

by newbyvector

stencil plugin for X6

→ sends tohttps://x6.antv.antgroup.com/tutorial/plugins/stencil

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

patterns

size

234.9 KB

versions

AUTO-PUBLISHED/npm/2023-04-12/MAL-2026-4109

@antv/x6-plugin-snapline@2.1.7

by newbyvector

snapline plugin for X6

→ sends tohttps://x6.antv.antgroup.com/tutorial/plugins/snapline

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s), 1 other host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

patterns

size

162.8 KB

versions

AUTO-PUBLISHED/npm/2024-01-24/MAL-2026-4108

@antv/x6-plugin-selection@2.2.2

by newbyvector

selection plugin for X6

→ sends tohttps://x6.antv.antgroup.com/tutorial/plugins/selection

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s), 1 other host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

patterns

size

304.3 KB

versions

AUTO-PUBLISHED/npm/2023-07-11/MAL-2026-4107

@antv/x6-plugin-scroller@2.0.10

by newbyvector

scroller plugin for X6

→ sends tohttps://x6.antv.antgroup.com/tutorial/plugins/scroller

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s), 1 other host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

patterns

size

287.6 KB

versions

AUTO-PUBLISHED/npm/2024-01-24/MAL-2026-4106

@antv/x6-plugin-minimap@2.0.7

by newbyvector

minimap plugin for X6

→ sends tohttps://x6.antv.antgroup.com/tutorial/plugins/minimap

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s), 1 other host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

patterns

size

76.2 KB

versions

AUTO-PUBLISHED/npm/2024-01-24/MAL-2026-4105

@antv/x6-plugin-keyboard@2.2.3

by newbyvector

keyboard plugin for X6

→ sends tohttps://x6.antv.antgroup.com/tutorial/plugins/keyboard

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s), 1 other host(s).

weekly

4.2K

/wk

llm verdict

benign 0.85

h-score

patterns

size

60.7 KB

versions

AUTO-PUBLISHED/npm/2023-10-02/MAL-2026-4104

@antv/x6-plugin-history@2.2.4

by newbyvector

history plugin for X6

→ sends tohttps://x6.antv.antgroup.com/tutorial/plugins/history

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s), 1 other host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

patterns

size

155.5 KB

versions

AUTO-PUBLISHED/npm/2023-04-12/MAL-2026-4103

@antv/x6-plugin-export@2.1.6

by newbyvector

export plugin for X6.

→ sends tohttps://x6.antv.antgroup.com/tutorial/plugins/export

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s), 1 other host(s).

weekly

3.1K

/wk

llm verdict

benign 0.85

h-score

patterns

size

73.3 KB

versions

AUTO-PUBLISHED/npm/2023-09-19/MAL-2026-4102

@antv/x6-plugin-dnd@2.1.1

by newbyvector

dnd plugin for X6

→ sends tohttps://x6.antv.antgroup.com/tutorial/plugins/dnd

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s), 1 other host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

patterns

size

89.4 KB

versions

AUTO-PUBLISHED/npm/2023-04-12/MAL-2026-4101

@antv/x6-plugin-clipboard@2.1.6

by newbyvector

clipboard plugin for X6

→ sends tohttps://x6.antv.antgroup.com/tutorial/plugins/clipboard

public-github-pushclipboard-access

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s), 1 other host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

patterns

size

60.9 KB

versions

AUTO-PUBLISHED/npm/2023-04-12/MAL-2026-3840

@antv/x6-geometry@2.0.5

by newbyvector

Geometry operations for X6

→ sends tohttps://x6.antv.antgroup.com

public-github-push

→ No suspicious destination, no remote-exec shape — 2 known-vendor host(s), 1 other host(s).

weekly

13K

/wk

llm verdict

benign 0.85

h-score

patterns

size

1.5 MB

versions

AUTO-PUBLISHED/npm/2020-09-09/MAL-2026-4100

@antv/x6-components@0.10.7

by bubkoo

React components for building x6 editors

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

size

535.8 KB

versions

AUTO-PUBLISHED/npm/2024-01-10/MAL-2026-4099

@antv/x6-common@2.0.17

by newbyvector

Basic toolkit for X6

→ sends tohttps://x6.antv.antgroup.com

public-github-pushchild-process-spawnbase64-decode

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

12K

/wk

llm verdict

benign 0.85

h-score

patterns

size

1.9 MB

versions

AUTO-PUBLISHED/npm/2025-12-01/MAL-2026-4098

@antv/x6-angular-shape@3.0.1

by gaofuhong

X6 shape for rendering angular components.

→ sends tohttps://x6.antv.antgroup.com/tutorial/intermediate/angular

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s), 1 other host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

patterns

size

873.9 KB

versions

AUTO-PUBLISHED/npm/2020-08-27/MAL-2026-4097

@antv/wx-f2@2.1.1

by zengyue

F2 for weixin mini-program

child-process-spawn

→ No suspicious destination, no remote-exec shape — 3 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

patterns

size

453.5 KB

versions

AUTO-PUBLISHED/npm/2022-07-22/MAL-2026-4096

@antv/word-scale-chart@0.3.4

by bbsqq

Word-Scale Chart Web components for Narrative Text Visualization

→ sends tohttps://antv.vision/

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

patterns

size

9.6 KB

versions

AUTO-PUBLISHED/npm/2022-03-22/MAL-2026-4095

@antv/webgpu-graph@1.0.0

by panyuqi

provide common graph algorithms implemented with WebGPU

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

size

2.9 MB

versions

AUTO-PUBLISHED/npm/2021-06-01/MAL-2026-4094

@antv/vis-predict-engine@0.1.1

by xdddst

visualization predict engine

→ sends tohttps://github.com/antvis/vis-predict-engine

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

288

/wk

llm verdict

benign 0.85

h-score

size

43.5 KB

versions

AUTO-PUBLISHED/npm/2025-04-21/MAL-2026-4093

@antv/vendor@1.0.11

by bqxbqxbqx

Vendored dependencies to fix ERR_REQUIRE_ESM.

→ sends tohttps://github.com/d3/d3-dispatch/blob/main/LICENSE

child-process-spawnlong-base64-literallong-hex-literal

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

patterns

size

1.2 MB

versions

AUTO-PUBLISHED/npm/2025-07-01/MAL-2026-4092

@antv/util@3.3.11

by kn9117

public-github-pushchild-process-spawn

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

patterns

size

889.7 KB

versions

AUTO-PUBLISHED/npm/2023-09-27/MAL-2026-4091

@antv/translator@1.0.1

by panyuqi

An translator for markdown files

→ sends tohttps://github.com/@antv/translator

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

649

/wk

llm verdict

benign 0.85

h-score

size

14.0 KB

versions

AUTO-PUBLISHED/npm/2019-09-05/MAL-2026-4090

@antv/torch@1.0.6

by atool

torchjs for @antv.

steals →Chromium logins

reads-chromium-credsreads-env-varschild-process-spawn

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

patterns

size

38.9 KB

versions

AUTO-PUBLISHED/npm/2021-11-20/MAL-2026-4088

@antv/thumbnails@2.0.0

by neoddish

Thumbnails of Chart Types.

→ sends tohttp://www.w3.org/2000/svg

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

size

164.9 KB

versions

AUTO-PUBLISHED/npm/2021-11-20/MAL-2026-4089

@antv/thumbnails-component@2.0.0

by neoddish

React Component for Thumbnails of Chart Types.

→ sends tohttp://www.w3.org/2000/svg

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

size

51.2 KB

versions

AUTO-PUBLISHED/npm/2026-01-31/MAL-2026-4087

@antv/t8@0.3.0

by atool

T8 is a text visualization solution for unstructured data within the AntV technology stack, and it is a declarative T8 markdown syntax that can be used to describe the content of data interpretation reports.

clipboard-access

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

patterns

size

780.5 KB

versions

AUTO-PUBLISHED/npm/2018-06-06/MAL-2026-4086

@antv/stat@0.0.2

by dxq613

the Grammar of Graphics in Javascript

child-process-spawn

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

/wk

llm verdict

benign 0.85

h-score

patterns

size

200.5 KB

versions

AUTO-PUBLISHED/npm/2021-09-07/MAL-2026-4085

@antv/smart-color@0.2.1

by cxxxxxn

A JavaScript library for color computation.

→ sends tohttps://github.com/antvis/smart-color.git

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

patterns

size

1014.0 KB

versions

AUTO-PUBLISHED/npm/2025-09-04/MAL-2026-4083

@antv/scale@0.5.2

by kn9117

Toolkit for mapping abstract data into visual representation.

→ sends tohttps://svn.r-project.org/R/trunk/src/appl/pretty.c

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

size

528.7 KB

versions

AUTO-PUBLISHED/npm/2023-11-12/MAL-2026-4082

@antv/sam@0.2.0

by lzxue

JS SDK for SAM

→ sends tohttps://github.com/facebook/regenerator/blob/main/LICENSE

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

size

91.1 KB

versions

AUTO-PUBLISHED/npm/2d ago/MAL-2026-4077

@antv/s2@2.7.1

by GitHub Actions

effective spreadsheet render core lib

→ sends tohttps://s2.antv.antgroup.com

public-github-pushclipboard-accessreads-env-vars

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s), 1 other host(s).

weekly

7.7K

/wk

llm verdict

benign 0.85

h-score

patterns

size

14.8 MB

versions

336

AUTO-PUBLISHED/npm/2026-03-31/MAL-2026-4081

@antv/s2-vue@2.2.0

by GitHub Actions

use S2 with vue

→ sends tohttps://s2.antv.antgroup.com

public-github-push

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s), 1 other host(s).

weekly

—

/wk

llm verdict

benign 0.85

h-score

patterns

size

3.6 MB

versions

Packages that hit the LLM stage

stripe-internal-utils@1.0.0

did-0091@11.1.8

did-0091@11.1.7

did-0091@11.0.9

did-0091@11.0.7

did-0091@11.0.6

did-0091@11.0.5

collected-forms-embed-js@1.0.5

collected-forms-embed-js@1.0.2

collected-forms-embed-js@1.0.1

env-security-scanner@1.6.0

xmorse@1.0.0

word-width@1.0.1

uri-parse@1.0.0

timeago.js@4.0.2

timeago-react@3.0.7

slice.js@1.1.1

size-sensor@1.0.4

ribbon.js@1.0.2

relationship.js@1.2.9

react-adsense@0.1.0

openclaw-cn@0.2.0

onfire.js@2.0.1

miz@1.0.1

mcp-mermaid@0.4.1

mcp-echarts@0.7.1

lint-md@0.2.0

lint-md-cli@0.1.2

limit-size@0.1.4

jest-url-loader@0.1.0

jest-random-mock@1.0.0

jest-less-loader@0.2.0

jest-expect@0.0.1

jest-electron@0.1.12

jest-date-mock@1.0.11

jest-canvas-mock@2.5.3

gantt-for-react@0.2.0

fixed-round@1.0.2

filesize.js@2.0.0

echarts-for-react@3.0.7

canvas-nest.js@2.0.4

byte-parser@1.0.0

boring-avatars-vanilla@1.0.2

babel-plugin-version@0.2.3

ast-plugin@0.0.7

amapcn@0.1.2

ai-figure@0.4.0

@starmind/collector-cli@0.2.10

@openclaw-cn/toutiao-ops@1.1.4

@openclaw-cn/libsignal@2.0.1

@openclaw-cn/feishu@0.1.11

@openclaw-cn/cli@1.3.1

@lint-md/parser@0.0.14

@lint-md/core@2.0.0

@lint-md/cli@2.0.0

@cap-js/openapi@1.4.2

@antv/xflow@2.2.4

@antv/xflow-hook@1.0.55

@antv/xflow-extension@1.0.55

@antv/xflow-diff@1.0.0

@antv/xflow-core@1.0.55

@antv/x6@3.1.7

@antv/x6-vue3-shape@1.0.0

@antv/x6-vue-shape@3.0.2

@antv/x6-vector@1.4.2

@antv/x6-react@0.1.26

@antv/x6-react-shape@3.0.1

@antv/x6-react-components@2.0.9

@antv/x6-plugin-transform@2.1.8

@antv/x6-plugin-stencil@2.1.5

@antv/x6-plugin-snapline@2.1.7

@antv/x6-plugin-selection@2.2.2

@antv/x6-plugin-scroller@2.0.10

@antv/x6-plugin-minimap@2.0.7

@antv/x6-plugin-keyboard@2.2.3

@antv/x6-plugin-history@2.2.4

@antv/x6-plugin-export@2.1.6

@antv/x6-plugin-dnd@2.1.1

@antv/x6-plugin-clipboard@2.1.6