MAL-2026-6259

See a problem?

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/respects-switch/MAL-2026-6259.json

JSON Data

https://api.osv.dev/v1/vulns/MAL-2026-6259

Aliases

GHSA-4xcj-2v9f-vmqv

Published

2026-06-22T12:00:00Z

Modified

2026-06-23T07:46:21.693465614Z

Summary

Malicious code in respects-switch (npm)

Details

respects-switch is a dependency confusion proof-of-concept package published to the public npm registry by the account r0binak and self-labeled "Security research PoC - Dependency Confusion Hunter". It was published at the artificially high version 999.0.0, the canonical floating-version bait used to outrank a private-registry package of the same name so that build pipelines preferring the highest available version resolve and install this public package instead. It belongs to the same r0binak dependency-confusion campaign as carousel-controller-mixin (MAL-2026-5856) and setka-editor (MAL-2026-5859). Packages in this campaign declare both preinstall and postinstall hooks that run callback.js on every npm install; the script collects installer identity and environment data (username, uid/gid, hostname, homedir, cwd, platform, Node version, local network interfaces, and the external IP via api.ipify.org) and probes for CI/cloud credential environment variables (AWSACCESSKEYID, GITHUBTOKEN, NPMTOKEN, DOCKERPASSWORD) plus GitHub Actions context. The collected data is exfiltrated to a hardcoded Discord webhook and via a DNS side-channel (base64-encoded host data prepended as a subdomain and resolved with dns.resolve()) to defeat egress HTTP filtering on CI networks. Regardless of the stated research intent, install-time exfiltration of host data and credential-presence flags is harmful to any pipeline that resolves this name.

-= Per source details. Do not edit below this line.=-

Source: amazon-inspector (21ae3f72348a2273de3d1f9487b73c6b91fbaed06a52415932eb36833dc06263)

respects-switch@999.0.0 ships a callback.js that is wired to both preinstall and postinstall lifecycle hooks in package.json, so the code runs automatically on npm install. callback.js collects host identity (username, uid, gid, home directory, hostname, cwd), local and external IP addresses (the latter via https://api.ipify.org), CI provider context, and presence flags for AWSACCESSKEYID, GITHUBTOKEN, NPMTOKEN, and DOCKERPASSWORD environment variables, then POSTs the resulting JSON over plain HTTP to a hardcoded bare-IP endpoint at http://132.243.20.244:8000/api/collect. The 999.0.0 version number and the package's self-description as a dependency-confusion proof-of-concept indicate the package is intended to be resolved by internal builds that mistakenly pull from the public registry, exfiltrating CI/build-host identity and secret-presence reconnaissance to the operator of the C2.

Source: ghsa-malware (564761554854f6a5a77df4f7f3a2971276906648771a5fd1834cbd0015ed5eaa)

Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be rotated immediately from a different computer. The package should be removed, but as full control of the computer may have been given to an outside entity, there is no guarantee that removing the package will remove all malicious software resulting from installing it.

Database specific

{
    "malicious-packages-origins": [
        {
            "source": "amazon-inspector",
            "import_time": "2026-06-22T16:36:58.62719289Z",
            "sha256": "21ae3f72348a2273de3d1f9487b73c6b91fbaed06a52415932eb36833dc06263",
            "modified_time": "2026-06-22T16:27:03Z",
            "id": "IN-MAL-2026-007107",
            "versions": [
                "999.0.0"
            ]
        },
        {
            "id": "GHSA-4xcj-2v9f-vmqv",
            "import_time": "2026-06-23T07:33:18.912481899Z",
            "source": "ghsa-malware",
            "modified_time": "2026-06-23T06:10:52Z",
            "ranges": [
                {
                    "events": [
                        {
                            "introduced": "0"
                        }
                    ],
                    "type": "SEMVER"
                }
            ],
            "sha256": "564761554854f6a5a77df4f7f3a2971276906648771a5fd1834cbd0015ed5eaa"
        }
    ]
}

References

Credits

- Amazon Inspector - FINDER
- - inspector-research@amazon.com
- SafeDep - FINDER
- - https://safedep.io

Affected packages

npm / respects-switch

Package

Name: respects-switch; View open source insights on deps.dev
Purl: pkg:npm/respects-switch

Affected ranges

Type: SEMVER
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

999.*

999.0.0

Database specific

indicators

{
    "package_integrity": [
        {
            "filename": "respects-switch-999.0.0.tgz",
            "hashes": {
                "sha512_sri": "sha512-r0ORhNFzoD9QtNYPsRDu/o86+D8UqIRmXqNcKd6hvvCzBKlKXmmpMEJh+MFxitBv2F/3eHR04sgjBNa2coa+Ig==",
                "sha1": "72a4e7f2032ab9e10f26646ccd81640422dcf684"
            }
        }
    ],
    "evidence_files": [
        {
            "sha256": "0e60895fd4fc6887b7d43e3c1d2321191e1ff112d989e28d20a3befedb9c042a",
            "tlsh": "cac196a507fe2844009357456e1f5809757ab0bb2b07ff707a3d271a7fd172c82b269a",
            "path": "callback.js"
        }
    ]
}

source

"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/respects-switch/MAL-2026-6259.json"

cwes

[
    {
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506",
        "description": "The product contains code that appears to be malicious in nature."
    },
    {
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506",
        "description": "The product contains code that appears to be malicious in nature."
    }
]