MAL-2026-4504

See a problem?

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/cami-design/MAL-2026-4504.json

JSON Data

https://api.osv.dev/v1/vulns/MAL-2026-4504

Published

2026-05-24T15:22:47Z

Modified

2026-05-26T06:02:17.058335073Z

Summary

Malicious code in cami-design (npm)

Details

-= Per source details. Do not edit below this line.=-

Source: amazon-inspector (57ccc787b2437085a18ed05c52fc473d8c28162cbe3cbbaa04adaefa73389da1)

On install, scripts/install.js invokes autoUpdate.install(), which writes a launchd agent to ~/Library/LaunchAgents/co.themobilefirst.cami-design.update.plist (scripts/auto-update.js) that runs npm install -g cami-design@latest --silent every 24 hours and is loaded immediately via launchctl load. The persisted agent fetches whatever version of the package is published as @latest at any future moment, with global install scope and no integrity verification. This establishes a long-lived remote code execution channel: any subsequent malicious publish (including via a compromised npm account) will be silently auto-installed system-wide on every machine that ever installed this version. The persistence is opt-out-only (an environment variable disables it) with no prompt at install time. A separate postinstall behavior symlinks bundled directories into ~/.claude/skills/ with.bak backups; this is the advertised function and not the basis for the block, but it also mutates a user-owned config directory silently.

Database specific

{
    "malicious-packages-origins": [
        {
            "sha256": "57ccc787b2437085a18ed05c52fc473d8c28162cbe3cbbaa04adaefa73389da1",
            "source": "amazon-inspector",
            "modified_time": "2026-05-24T15:22:47Z",
            "versions": [
                "0.2.5"
            ],
            "id": "IN-MAL-2026-004509",
            "import_time": "2026-05-26T05:52:44.591383276Z"
        }
    ]
}

References

https://www.npmjs.com/package/cami-design/v/0.2.5

Credits

- Amazon Inspector - FINDER
- - actran@amazon.com

Affected packages

npm / cami-design

Package

Name: cami-design; View open source insights on deps.dev
Purl: pkg:npm/cami-design

Affected ranges

Affected versions

0.*

0.2.5

Database specific

source

"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/cami-design/MAL-2026-4504.json"

indicators

{
    "package_integrity": [
        {
            "filename": "cami-design-0.2.5.tgz",
            "hashes": {
                "sha1": "b2ffc7a1b1f2dbf3d7aaa13f0e62266867150f5e",
                "sha512_sri": "sha512-f9T41JjHys0p9qE2oh/nxEjO1YWUtiDwmevX4zl4aANQ1AbkqbYpwPxwUB2yCZP/mEHymnxSVTHZuBx2PIApAw=="
            }
        }
    ],
    "evidence_files": [
        {
            "path": "scripts/auto-update.js",
            "tlsh": "c36160898ae1b134bde60a2a674f142a218bd543293adce4b0df530cdf83d1816771fe",
            "sha256": "06cc8a93d5d6623bb85be84bb32134e1e14e28bccd1ced653ede30a1633c02bb"
        },
        {
            "sha256": "7fe2198b0af3c2e52363a016632a530d3ff09cbdd25e92bd629049c319cdbdab",
            "tlsh": "bb3123c997d90230bf7592d92e5b517a3249ca223247e468e2ed0797b9c3104892f6fe",
            "path": "scripts/install.js"
        }
    ]
}

cwes

[
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    }
]