-= Per source details. Do not edit below this line.=-
package.json declares preinstall="node index.js". On every npm install, index.js iterates process.env and harvests any variable whose name contains SECRET/TOKEN/PASSWORD/KEY/CREDENTIAL, plus an explicit list of high-value secrets (NPMTOKEN, GITHUBTOKEN, AWSACCESSKEYID, AWSSECRETACCESSKEY, AZURECLIENTSECRET, GOOGLEAPPLICATIONCREDENTIALS, etc.). It also collects os.hostname(), os.userInfo().username, process.cwd(), process.platform, process.arch, and the output of execSync('ps -eo pid,pcpu,pmem,user,comm --sort=-pcpu | head -n 8'). The collected JSON is POSTed via https.request to a hardcoded Pipedream endpoint at eov0bmnid410yqf.m.pipedream.net. The package self-labels as a "PenTest design system" / canary but ships no design-system code — the main entry is solely the exfiltration script, and the @vpms scope appears to target an internal organization namespace (dependency-confusion shape). Self-labeling as a "pentest canary" does not excuse unsolicited bulk credential exfiltration from installers who never consented to a pentest scope.
Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be rotated immediately from a different computer. The package should be removed, but as full control of the computer may have been given to an outside entity, there is no guarantee that removing the package will remove all malicious software resulting from installing it.
The OpenSSF Package Analysis project identified '@vpms/design-system' @ 0.1.3 (npm) as malicious.
It is considered malicious because:
{
"malicious-packages-origins": [
{
"versions": [
"0.1.3"
],
"import_time": "2026-06-25T18:17:33.993085291Z",
"modified_time": "2026-06-25T17:20:53Z",
"sha256": "321dc26d64d28a5a4f4d59f0d719944570cccc7e16173b205160b2db4e04720e",
"source": "ossf-package-analysis"
},
{
"versions": [
"1.0.0"
],
"import_time": "2026-06-25T23:00:33.650059441Z",
"modified_time": "2026-06-25T22:23:22Z",
"id": "IN-MAL-2026-007546",
"sha256": "e080b3d281648710ac7108e44effe036408abcb4fd3461adb78ea205682cd072",
"source": "amazon-inspector"
},
{
"versions": [
"1.1.2"
],
"import_time": "2026-06-25T23:00:33.756841614Z",
"modified_time": "2026-06-25T22:23:23Z",
"id": "IN-MAL-2026-007548",
"sha256": "43ce5813fba2660b094a3e8a5c5a0bf2f1972530c294830c0a2e3d15dcd1b096",
"source": "amazon-inspector"
},
{
"versions": [
"1.0.1"
],
"import_time": "2026-06-25T23:00:33.697090628Z",
"modified_time": "2026-06-25T22:23:22Z",
"id": "IN-MAL-2026-007547",
"sha256": "aa32a06536478e10ff2d58960db9819a652cbda41b095874099b81eec1fb3c98",
"source": "amazon-inspector"
},
{
"versions": [
"0.1.3"
],
"import_time": "2026-06-25T23:00:33.816041126Z",
"modified_time": "2026-06-25T22:23:27Z",
"id": "IN-MAL-2026-007549",
"sha256": "b36aa95e96b547c64386496ed1c26bf1b59b2120f604dc584575028eee61ff52",
"source": "amazon-inspector"
},
{
"import_time": "2026-06-29T03:26:14.372409577Z",
"modified_time": "2026-06-29T02:52:53Z",
"id": "GHSA-43r2-9cx9-pv7f",
"sha256": "537bc45c39817d78b733d2a67cdfbccfd9f638dfa184f151ed65ec597131c507",
"ranges": [
{
"type": "SEMVER",
"events": [
{
"introduced": "0"
}
]
}
],
"source": "ghsa-malware"
}
]
}"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/@vpms/design-system/MAL-2026-6467.json"
[
{
"name": "Embedded Malicious Code",
"description": "The product contains code that appears to be malicious in nature.",
"cweId": "CWE-506"
},
{
"name": "Embedded Malicious Code",
"description": "The product contains code that appears to be malicious in nature.",
"cweId": "CWE-506"
},
{
"description": "The product contains code that appears to be malicious in nature.",
"name": "Embedded Malicious Code",
"cweId": "CWE-506"
},
{
"description": "The product contains code that appears to be malicious in nature.",
"name": "Embedded Malicious Code",
"cweId": "CWE-506"
},
{
"description": "The product contains code that appears to be malicious in nature.",
"name": "Embedded Malicious Code",
"cweId": "CWE-506"
}
]
{
"package_integrity": [
{
"hashes": {
"sha1": "200a2beb6814eea677cb5f80591d0fa0d0570664",
"sha512_sri": "sha512-S9uAZY2+DvWnbjaj4qz+AKvi5XhoJfP0Hxms1l0pTVyVuAdwcofiNv0jrXbxBXl00FuTROBfR++uI6PytsXSpQ=="
},
"filename": "design-system-1.0.0.tgz"
}
],
"evidence_files": [
{
"path": "index.js",
"sha256": "44f46d0202a24166c08313feaf1a7cec0f40499420267c846b491c5c26b17201",
"tlsh": "572111a1417295701fb50bc1a240fc19ab57d927b30b58b4b18d93482fdd13805335cf"
},
{
"path": "package.json",
"sha256": "633a5ff09cc23bbf796c0b09bb7f093724eb96af242a3e82c9c9d2cc3911e939",
"tlsh": "6de08c248a2158732ac49a690d2a9192a2605e6f00647c0832cf4038929aba69aff718"
}
]
}