→ Worm self-propagation: package reads .npmrc _authToken AND invokes npm publish in install-path code. Shai-Hulud-class shape — no legitimate package re-publishes OTHER packages from the user's machine.
weekly
—
/wk
llm verdict
malicious 0.96
h-score
52
patterns
34
size
35.0 MB
versions
292
AUTO-PUBLISHED/kitchen-sink · 8/npm/
ciphernest@0.8.4
by vmmuthu31
AI-aware security scanner for VS Code — code vulnerabilities, LLM risks, secrets, dependencies, MCP & agent security
AdiaUI A2UI training corpus — canonical v0.9 catalog + chunks + eval fixtures + feedback + gap registry. Consumed by the compose engine's retrieval layer + the MCP pipeline.
→ Worm self-propagation: package reads .npmrc _authToken AND invokes npm publish in install-path code. Shai-Hulud-class shape — no legitimate package re-publishes OTHER packages from the user's machine.
weekly
—
/wk
llm verdict
malicious 0.96
h-score
40
patterns
5
size
2.1 MB
versions
1
AUTO-PUBLISHED/npm/
cli-jaw@2.1.3
by bitkyc08
Personal AI assistant powered by Antigravity, AI-E, Claude, Claude E, Codex, Codex App, Cursor, Gemini, Grok, OpenCode, and Copilot — Web, Terminal, Telegram, and Discord interfaces with 107 built-in skills
steals →AI API keys1PasswordTelegram→ sends tohttps://github.com/lidge-jun/cli-jaw.git
The Bold Reports by Syncfusion controls for JavaScript contains ReportViewer and ReportDesigner HTML5 and JavaScript reporting controls for enterprise web development
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
weekly
794
/wk
llm verdict
benign 0.85
h-score
75
patterns
11
size
831.1 KB
versions
7
AUTO-PUBLISHED/npm//MAL-2026-4505
carvus-lens@1.0.1
by aadil-fazal
Circle-to-Search for desktop — draw a circle on your screen to instantly search Google Lens, get AI answers, and translate text. Powered by Tesseract OCR and Groq AI.
→ No suspicious destination, no remote-exec shape — 1 other host(s).
weekly
—
/wk
llm verdict
benign 0.85
h-score
75
patterns
17
size
34.9 MB
versions
123
AUTO-PUBLISHED/npm//MAL-2026-4459
@touchvue/chat@1.0.0-beta.54
by wadecnchart
TouchVue Chat Component Library
clipboard-access
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
weekly
—
/wk
llm verdict
benign 0.85
h-score
75
patterns
1
size
25.4 MB
versions
54
AUTO-PUBLISHED/npm//MAL-2026-4399
@kedem/okdb@1.8.15
by kedemd
A fast, type-oriented database — strong consistency and rich indexing at the core, with sync, vector embeddings, full-text search, and AI tooling built in. Designed for the AI era.
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s), 1 other host(s).
weekly
—
/wk
llm verdict
benign 0.85
h-score
75
patterns
2
size
60.9 KB
versions
11
AUTO-PUBLISHED/npm//MAL-2026-4087
@antv/t8@0.3.0
by atool
T8 is a text visualization solution for unstructured data within the AntV technology stack, and it is a declarative T8 markdown syntax that can be used to describe the content of data interpretation reports.
clipboard-access
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
weekly
—
/wk
llm verdict
benign 0.85
h-score
75
patterns
1
size
780.5 KB
versions
5
AUTO-PUBLISHED/npm//MAL-2026-4077
@antv/s2@2.7.1
by GitHub Actions
effective spreadsheet render core lib
→ sends tohttps://s2.antv.antgroup.com
public-github-pushclipboard-accessreads-env-vars
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s), 1 other host(s).
weekly
7.7K
/wk
llm verdict
benign 0.85
h-score
75
patterns
3
size
14.8 MB
versions
336
AUTO-PUBLISHED/npm//MAL-2026-4074
@antv/narrative-text-vis@0.3.16
by bbsqq
React component of interactive narrative text
reads-env-varschild-process-spawnclipboard-access
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).