MAL-2026-6548

See a problem?

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/ts-ankle/MAL-2026-6548.json

JSON Data

https://api.osv.dev/v1/vulns/MAL-2026-6548

Published

2026-06-27T19:12:29Z

Modified

2026-06-27T19:46:39.129983658Z

Summary

Malicious code in ts-ankle (npm)

Details

-= Per source details. Do not edit below this line.=-

Source: amazon-inspector (1695e2ffa9252abe1053fc13895a071bd87cb27eb009eeb2262aae1a27da4ea5)

On npm install, ts-ankle@1.1.0 runs a postinstall hook (node test.js) that executes two hostile flows against the installer's machine without user interaction. (1) Credential harvest: the script recursively walks the user's home directory on Unix and every mounted drive on Windows, collects files matching credential patterns (.env, .json, .toml, .pem, id.json, etc.), and POSTs them as multipart form uploads to https://datasecure-service.vercel.app/api/v1. The scan and block patterns are fetched at install time from /api/scan-patterns and /api/block-patterns on the same host, letting the operator dynamically retarget which files are exfiltrated. (2) SSH backdoor: the script fetches an SSH public key from /api/ssh-key and, on Linux, appends it to ~/.ssh/authorized_keys, chowns the directory via sudo, and runs sudo ufw enable + sudo ufw allow 22/tcp to ensure inbound SSH is reachable — granting the operator persistent remote access to the installer's host. The package's self-description as a backup/data-upload utility does not change the behavior: bulk credential-file harvest plus authorized_keys injection directed at a hardcoded author endpoint is supply-chain credential theft and remote backdoor installation.

Database specific

{
    "malicious-packages-origins": [
        {
            "versions": [
                "1.1.0"
            ],
            "ranges": [
                {
                    "type": "SEMVER",
                    "events": [
                        {
                            "introduced": "0"
                        }
                    ]
                }
            ],
            "modified_time": "2026-06-27T19:12:29Z",
            "sha256": "1695e2ffa9252abe1053fc13895a071bd87cb27eb009eeb2262aae1a27da4ea5",
            "id": "IN-MAL-2026-007684",
            "source": "amazon-inspector",
            "import_time": "2026-06-27T19:35:55.676156931Z"
        }
    ]
}

References

https://www.npmjs.com/package/ts-ankle/v/1.1.0

Credits

- Amazon Inspector - FINDER
- - inspector-research@amazon.com

Affected packages

npm / ts-ankle

Package

Name: ts-ankle; View open source insights on deps.dev
Purl: pkg:npm/ts-ankle

Affected ranges

Type: SEMVER
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.1.0

Database specific

cwes

[
    {
        "cweId": "CWE-506",
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code"
    }
]

indicators

{
    "package_integrity": [
        {
            "hashes": {
                "sha512_sri": "sha512-hatKIdEf6wwCtw5ebhjNZHl69PlEVRPAGT91OlXT04g0fDgH0Xcb0c94ldW2lMQhKVmzwdxLO1q7lL8CAEhJew==",
                "sha1": "2f21fc8bbd48a5c59d43483e0d76da477e55a9c7"
            },
            "filename": "ts-ankle-1.1.0.tgz"
        }
    ],
    "evidence_files": [
        {
            "path": "index.js",
            "tlsh": "9c52a6aa10a67526c77127b8db074019ff27db6735224647f2bc42883f7212491e6fec",
            "sha256": "28a7cbf43fc7ea473a83f25e5449d25806c1902bc8b90c085e21b7da6e064073"
        },
        {
            "path": "package.json",
            "tlsh": "92f0ed27ce598e6328f53aa8287c0627f6a1832f0204880f75bd661c8fb66234485f1e",
            "sha256": "a92b142f2c0a13fefc056979d09c2abec7245a1cc1ce41b247f4eec97b8fd1b9"
        }
    ]
}

source

"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/ts-ankle/MAL-2026-6548.json"