// npm package
@slates/provider
versions
11
maintainers
1
license
FSL 1.1
first publish
2025-12-31
publisher
tobihrbr
tarball
287,777 B
AUTO-PUBLISHED·1 version indexed·latest published 2026-06-06
// exfil path
what is read → where it shipssteals
- ● Chromium logins
- ● Seed phrase
sends to
(no destination string extracted — payload may be dynamic / obfuscated)
evidence in excerpt
> import type { AxiosError, AxiosResponse, InternalAxiosRequestConfig } from 'axios';
> type TraceAwareAxiosRequestConfig = InternalAxiosRequestConfig & {// offending code· @1.0.0-rc.15· 1 file flagged
- @1.0.0-rc.15··AUTO-PUBLISHED·publisher: tobihrbrheuristic 64/100static flags 2llm skippednew-publisher:18dmature-packagepublisher-multi-name-burst:13publisher-version-pump:19reads-chromium-credsreads-seed-phrase
// offending code· 1 file flaggedpatterns: 2
--- package/src/axios/trace.ts (excerpt) --- import type { AxiosError, AxiosResponse, InternalAxiosRequestConfig } from 'axios'; import type { SlateContext } from '../context'; export interface SlateHttpTraceTextBody { contentType?: string; text: string; truncated?: boolean; } export interface SlateHttpTrace { startedAt: string; durationMs: number; request: { method: string; url: string; headers?: Record<string, string>; body?: SlateHttpTraceTextBody; }; response?: { status: number; statusText?: string; headers?: Record<string, string>; body?: SlateHttpTraceTextBody; }; error?: { code?: string; message: string; }; } interface SlateHttpTraceDraft { context: SlateContext<any, any, any>; startedAt: string; startedAtMs: number; request: SlateHttpTrace['request']; } type TraceAwareAxiosRequestConfig = InternalAxiosRequestConfig & { __slatesHttpTraceDraft?: SlateHttpTraceDraft; }; let traceDraftsByConfig = new WeakMap<object, SlateHttpTraceDraft>(); let traceDraftsByHeaders = new WeakMap<object, SlateHttpTraceDraft>(); let TRACE_TEXT_LIMIT = 10 * 1024; let REDACTED_VALUE = '[redacted]'; let STRUCTURED_DEPTH_LIMIT = 6; let STRUCTURED_ENTRY_LIMIT = 50; // Atoms that identify a header/field/param name as containing a secret. // These are matched with token boundaries so `sig` flags `x-sig-key` but NOT `configure`, // and `code` only flags `code`/`auth_code`/etc., never `encode`/`decoder`. // `[-_.]?` allows compound atoms to match either with or witho
