MAL-2026-6673

See a problem?
Import Source
https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/anthropic-toolkit/MAL-2026-6673.json
JSON Data
https://api.osv.dev/v1/vulns/MAL-2026-6673
Published
2026-06-30T02:02:57Z
Modified
2026-06-30T03:31:44.954237681Z
Summary
Malicious code in anthropic-toolkit (npm)
Details

-= Per source details. Do not edit below this line.=-

Source: amazon-inspector (90ec82c6478e3a82eac71597b1c1fffc17d1b138e11e1a2aeadec7c00344c65e)

anthropic-toolkit@0.1.1 is a typosquat against the @anthropic-ai/sdk ecosystem. The package ships no library code — its declared main (dist/index.js) is absent from the tarball — and the entire functional payload is scripts/postinstall.js, which runs automatically on npm install. On install the script collects host and user identifiers (os.hostname(), os.userInfo(), os.platform(), cwd), parses ~/.gitconfig and ~/.config/git/config for user.email, walks .git to pull the remote origin URL and the last 50 reflog committer emails, enumerates ~/.ssh/*.pub to extract key-comment emails, reads ~/.aws/config for profile names, reads ~/.config/gh/hosts.yml for the authenticated GitHub user, reads ~/.config/gcloud/properties for the active GCP project/account, reads /etc/resolv.conf for the corporate DNS search domain, and reads parent-project package.json metadata plus CI provider env. The aggregated JSON is POSTed over HTTPS to npm-package-logger-228835561205.europe-west1.run.app. A header comment frames the collection as 'anonymous compatibility diagnostics' with an ANTHROPIC_TOOLKIT_TELEMETRY_DISABLED opt-out, but the breadth of the harvest (SSH key identities, cloud account identifiers, git committer history, internal DNS search domain) far exceeds any legitimate telemetry and the cover story does not constitute installer consent. The data set is high-value reconnaissance material for targeted phishing and supply-chain follow-on attacks against the developer, their employer, and their cloud tenancy.

Database specific
{
    "malicious-packages-origins": [
        {
            "versions": [
                "1.0.1"
            ],
            "sha256": "047000077a5181c5394d7caec1a5d27e71dc984396e951e2b83985b1f9b20989",
            "modified_time": "2026-06-30T02:03:14Z",
            "source": "amazon-inspector",
            "id": "IN-MAL-2026-007787",
            "import_time": "2026-06-30T03:13:58.994462602Z"
        },
        {
            "versions": [
                "0.5.0"
            ],
            "sha256": "49b0519f55b08c13567aec6a38dc2a7e0226d22a37885c86e609f03f7e99eaee",
            "modified_time": "2026-06-30T02:05:14Z",
            "source": "amazon-inspector",
            "id": "IN-MAL-2026-007801",
            "import_time": "2026-06-30T03:14:00.680623248Z"
        },
        {
            "versions": [
                "0.3.1"
            ],
            "sha256": "4a3490eb87ca9c29a8febbb5e5a13ff067cce445eb4ddccaefd462a067da0742",
            "source": "amazon-inspector",
            "modified_time": "2026-06-30T02:03:06Z",
            "id": "IN-MAL-2026-007786",
            "import_time": "2026-06-30T03:13:58.902131578Z"
        },
        {
            "versions": [
                "0.2.0"
            ],
            "sha256": "65a6ab4cc1aa0cb57baa92acaf3ee25793f33ba8ab053a9eb065c7692723dfca",
            "modified_time": "2026-06-30T02:03:56Z",
            "source": "amazon-inspector",
            "id": "IN-MAL-2026-007792",
            "import_time": "2026-06-30T03:13:59.614964795Z"
        },
        {
            "versions": [
                "0.6.0"
            ],
            "sha256": "6eff9920c4daa41936562f9a40baf01463fa50ce81f28ff9b0750fd157f4aec6",
            "modified_time": "2026-06-30T02:04:41Z",
            "source": "amazon-inspector",
            "id": "IN-MAL-2026-007797",
            "import_time": "2026-06-30T03:14:00.191929108Z"
        },
        {
            "versions": [
                "0.2.1"
            ],
            "sha256": "93f1e4b3b2d59ed3c4961ded435de21add69b43492ec5d12b625a9b6c50edc72",
            "modified_time": "2026-06-30T02:03:21Z",
            "source": "amazon-inspector",
            "id": "IN-MAL-2026-007788",
            "import_time": "2026-06-30T03:13:59.121979982Z"
        },
        {
            "versions": [
                "1.3.0"
            ],
            "sha256": "bcb08c0e2f8d02016153046061d99e4956ea06f8a3e7ec032863c35b639c394e",
            "modified_time": "2026-06-30T02:03:30Z",
            "source": "amazon-inspector",
            "id": "IN-MAL-2026-007789",
            "import_time": "2026-06-30T03:13:59.23427708Z"
        },
        {
            "versions": [
                "1.2.1"
            ],
            "sha256": "c8ef319a04814111a56265898f4441a094c31af07f27e8799c36d8323888cc8c",
            "modified_time": "2026-06-30T02:04:49Z",
            "source": "amazon-inspector",
            "id": "IN-MAL-2026-007798",
            "import_time": "2026-06-30T03:14:00.333929768Z"
        },
        {
            "versions": [
                "0.9.0"
            ],
            "sha256": "da8c70a3ea2062cc2675d513e63ee119544895d9ebffa72a255b83326a66527f",
            "source": "amazon-inspector",
            "modified_time": "2026-06-30T02:05:36Z",
            "id": "IN-MAL-2026-007803",
            "import_time": "2026-06-30T03:14:00.953605764Z"
        },
        {
            "versions": [
                "0.1.1"
            ],
            "sha256": "90ec82c6478e3a82eac71597b1c1fffc17d1b138e11e1a2aeadec7c00344c65e",
            "modified_time": "2026-06-30T02:04:05Z",
            "source": "amazon-inspector",
            "import_time": "2026-06-30T03:13:59.71197239Z",
            "id": "IN-MAL-2026-007793"
        },
        {
            "versions": [
                "1.2.0"
            ],
            "sha256": "ce5db7f45902f47128033a6e72f319c6d1db5c50af89a56171059d6cba63b3af",
            "modified_time": "2026-06-30T02:05:55Z",
            "source": "amazon-inspector",
            "id": "IN-MAL-2026-007805",
            "import_time": "2026-06-30T03:14:01.203801711Z"
        },
        {
            "versions": [
                "0.1.0"
            ],
            "sha256": "d0556d6c7695c25e1ba024658bbbdb3d3dc2f862e7704a96301645e20c371918",
            "modified_time": "2026-06-30T02:05:25Z",
            "source": "amazon-inspector",
            "id": "IN-MAL-2026-007802",
            "import_time": "2026-06-30T03:14:00.785214596Z"
        },
        {
            "versions": [
                "0.4.0"
            ],
            "sha256": "e00a2fee936768a863daa63514f93ce988b0bf4a154448df6709dbb39324f137",
            "modified_time": "2026-06-30T02:03:40Z",
            "source": "amazon-inspector",
            "id": "IN-MAL-2026-007790",
            "import_time": "2026-06-30T03:13:59.325744308Z"
        },
        {
            "versions": [
                "1.1.1"
            ],
            "sha256": "eb89991180df01be474a7d386bf599070ae78f7a2793b7a9d7b428997a3e4148",
            "modified_time": "2026-06-30T02:04:34Z",
            "source": "amazon-inspector",
            "id": "IN-MAL-2026-007796",
            "import_time": "2026-06-30T03:14:00.078496332Z"
        },
        {
            "versions": [
                "0.4.1"
            ],
            "sha256": "2de800cc5c674cf797a810aaf04324205058cdb92615414848b0bf30f03d0c1e",
            "modified_time": "2026-06-30T02:03:47Z",
            "source": "amazon-inspector",
            "import_time": "2026-06-30T03:13:59.522851482Z",
            "id": "IN-MAL-2026-007791"
        },
        {
            "versions": [
                "1.0.0"
            ],
            "sha256": "3bf9ce166567774f15e4dbe914878ea465351416e804bd5eedf566a469df84d0",
            "modified_time": "2026-06-30T02:04:58Z",
            "source": "amazon-inspector",
            "id": "IN-MAL-2026-007799",
            "import_time": "2026-06-30T03:14:00.45041503Z"
        },
        {
            "versions": [
                "0.3.0"
            ],
            "sha256": "4b11ad577e38504a6a2dab206a5fe447c79cb6a7dc6eee653e66eb62aca05155",
            "modified_time": "2026-06-30T02:02:57Z",
            "source": "amazon-inspector",
            "import_time": "2026-06-30T03:13:58.791455313Z",
            "id": "IN-MAL-2026-007785"
        },
        {
            "versions": [
                "0.7.0"
            ],
            "sha256": "6592f287e72699e5cc617f0a960cef0104c0cd4f5fcf1348e93f27eb8af379b5",
            "modified_time": "2026-06-30T02:04:12Z",
            "source": "amazon-inspector",
            "id": "IN-MAL-2026-007794",
            "import_time": "2026-06-30T03:13:59.808051492Z"
        },
        {
            "versions": [
                "1.1.0"
            ],
            "sha256": "fbd0be5a1ce1ee9b06cac5758a87c3caaefab5685bb5dfc2d7f8521f957ee64d",
            "modified_time": "2026-06-30T02:05:06Z",
            "source": "amazon-inspector",
            "id": "IN-MAL-2026-007800",
            "import_time": "2026-06-30T03:14:00.575362766Z"
        },
        {
            "versions": [
                "0.5.1"
            ],
            "sha256": "265a6c7912ef2328d01ac6fb184ba2a08a337f46bf486a4b4ab305660cc6c5fe",
            "modified_time": "2026-06-30T02:04:23Z",
            "source": "amazon-inspector",
            "id": "IN-MAL-2026-007795",
            "import_time": "2026-06-30T03:13:59.911748308Z"
        },
        {
            "versions": [
                "0.8.0"
            ],
            "sha256": "929f863e5a330785ad4e1f191d59859763f56faa1039834d0224615aa5dd7af4",
            "modified_time": "2026-06-30T02:05:46Z",
            "source": "amazon-inspector",
            "id": "IN-MAL-2026-007804",
            "import_time": "2026-06-30T03:14:01.076201147Z"
        }
    ]
}
References
Credits

Affected packages

npm / anthropic-toolkit

Package

Affected ranges

Affected versions

0.*
0.1.0
0.1.1
0.2.0
0.2.1
0.3.0
0.3.1
0.4.0
0.4.1
0.5.0
0.5.1
0.6.0
0.7.0
0.8.0
0.9.0
1.*
1.0.0
1.0.1
1.1.0
1.1.1
1.2.0
1.2.1
1.3.0

Database specific

indicators
{
    "package_integrity": [
        {
            "filename": "anthropic-toolkit-1.0.1.tgz",
            "hashes": {
                "sha512_sri": "sha512-rYSLYrh9jUS/L05BsAR8n0sW19LASLJ3454mYnie4qyo7gZNUbvJryjOMSTMNPckjDv/bT9+a8AMgs7dTALWug==",
                "sha1": "5d2f5305025b22449a536646c2696524bb00218a"
            }
        }
    ],
    "evidence_files": [
        {
            "sha256": "87d68719e40fc5ae1cfea154b9ca0e3dad3c6e04961752ae82b88e9be2ff03d5",
            "path": "scripts/postinstall.js",
            "tlsh": "fa72b77545e705123b62e95cb74b2081f756f2233a09e8a0799db2095fce92093f26fb"
        },
        {
            "sha256": "4d2e00500e19057912aa0af10f05b54dfcb63c30917f1b3f440faac845f748e7",
            "path": "package.json",
            "tlsh": "5301f714c83f8a7717c81a91bda61606a9234c6f4d857c4867c3072c8b4dabf29bd52c"
        }
    ]
}
source
"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/anthropic-toolkit/MAL-2026-6673.json"
cwes
[
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    }
]