// npm package
zudoku-security-helper
Security helper for Zudoku
versions
1
maintainers
1
first publish
2026-06-07
publisher
gagesgr
tarball
1,796 B
AUTO-PUBLISHED·1 version indexed·latest published 2026-06-07
// exfil path
what is read → where it shipssteals
- ● AWS keys
- ● npm token
- ● GitHub PAT
- ○ home dir
- ○ system info
sends to
- ⤳ open.larksuite.com(open.larksuite.com (via hostname var))
// offending code· @99.0.0· 1 file flagged
llm: malicious · 0.95→ Credential read (reads-aws-creds, reads-npmrc, reads-github-tokens) paired with dest-via-hostname-var destination — classic exfiltration signature.
- @99.0.0··AUTO-PUBLISHED·publisher: gagesgrheuristic 99/100static flags 6llm malicious (0.95) via fast-trackinstall-scripts:postinstallnew-publisher:2dfirst-version-of-packagepublisher-multi-name-burst:3publisher-version-pump:6reads-aws-credsreads-npmrcreads-github-tokensreads-homedirreads-system-infodest-via-hostname-var
→ Credential read (reads-aws-creds, reads-npmrc, reads-github-tokens) paired with dest-via-hostname-var destination — classic exfiltration signature.
// offending code· 1 file flaggedpatterns: 6
