// npm package
@pipedream/faunadb
Pipedream Faunadb Components
weekly
2
monthly
29
versions
9
maintainers
8
first publish
2021-01-07
publisher
adolfo-pd
tarball
19,922 B
AUTO-PUBLISHED·1 version indexed·latest published 2026-05-29
// exfil path
what is read → where it shipssteals
- ● npm token
sends to
(no destination string extracted — payload may be dynamic / obfuscated)
evidence in excerpt
> import { axios } from "@pipedream/platform";
> return "https://graphql.fauna.com";
> return axios($ ?? this, {// publisher campaignby adolfo-pd
9 caught packages from this accountThis is not an isolated catch. The same publisher has shipped 8 other packages that our pipeline flagged — the shape of a coordinated campaign, not a one-off. Each link below opens that sibling's analysis.
// offending code· @0.4.0· 1 file flagged
llm: benign · 0.85→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s), 1 other host(s).
- @0.4.0··AUTO-PUBLISHED·publisher: adolfo-pdheuristic 99/100static flags 1llm benign (0.85) via ollamanew-publisher:10drecent-owner-changepublisher-multi-name-burst:127publisher-version-pump:128dormant-takeover:prev=casret@0.3.8reads-npmrc
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s), 1 other host(s).
// offending code· 1 file flaggedpatterns: 1
--- package/faunadb.app.mjs (excerpt) --- import { axios } from "@pipedream/platform"; import faunadb from "faunadb"; const Client = faunadb.Client; const { Paginate, Map, Lambda, Get, Var, Collection, Collections, Documents, } = faunadb.query; export default { type: "app", app: "faunadb", propDefinitions: { collections: { type: "string", label: "Collection", description: "The ID of a collection", async options() { const collections = await this.getCollections(); return collections.map((collection) => collection.id); }, }, }, methods: { _authToken() { return this.$auth.secret; }, _apiUrl() { return "https://graphql.fauna.com"; }, _headers() { return { "Authorization": `Bearer ${this._authToken()}`, }; }, async _makeRequest(path, options = {}, $ = undefined) { return axios($ ?? this, { url: `${this._apiUrl()}/${path}`, headers: this._headers(), ...options, }); }, _createApiClient() { return new Client({ secret: this._authToken(), }); }, async getCollections() { const client = this._createApiClient(); const collections = []; const collectionsPaginator = client.paginate(Collections()); await collectionsPaginator.each((page) => { collections.push(...page); }); await client.close(); return collections; }, async getDocumentsInCollection({ collect
