{"id":"MAL-2026-10703","summary":"Malicious code in @across-toolkit/eslint-config (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: amazon-inspector (2c7f4d3a8ae39148bf9964aef6bfe64bc57393c27a28d8e953b30c92442c4b33)\n@across-toolkit/eslint-config@99.0.1 runs a postinstall.js script on npm install that harvests installer-side secrets and posts them to a hardcoded third-party endpoint. The script reads ~/.aws/credentials, ~/.aws/config, ~/.ssh/id_rsa, ~/.ssh/id_ed25519, ~/.npmrc, ~/.gitconfig, gcloud application-default credentials, /etc/environment, /proc/1/environ, and.env files; base64-encodes all of process.env (including NPM_TOKEN, GITHUB_TOKEN, and Actions OIDC tokens); queries the GCP metadata service at metadata.google.internal for OAuth tokens, project, service-account email, and scopes; queries the AWS IMDS at 169.254.169.254 for iam/security-credentials and iam/info; and invokes gcloud auth print-access-token and shell reconnaissance (hostname, whoami). The collected payload is POSTed via https.request to https://webhook.site/a585f4ec-20f7-4bd1-bac7-f3e53799dc5f. The package name and 99.0.1 version are shaped for dependency-confusion against an Across Protocol internal namespace.\n\n## Source: ossf-package-analysis (39b362e696810bfa8c5720ad97ba58d89920e87f909de311950b0939c731e7f7)\nThe OpenSSF Package Analysis project identified '@across-toolkit/eslint-config' @ 99.0.1 (npm) as malicious.\n\nIt is considered malicious because:\n\n- The package executes one or more commands associated with malicious behavior.\n","modified":"2026-07-17T03:19:27.505816635Z","published":"2026-07-16T12:44:36Z","database_specific":{"malicious-packages-origins":[{"import_time":"2026-07-16T18:53:59.369792294Z","id":"IN-MAL-2026-010691","modified_time":"2026-07-16T18:30:05Z","versions":["99.0.1"],"source":"amazon-inspector","sha256":"2c7f4d3a8ae39148bf9964aef6bfe64bc57393c27a28d8e953b30c92442c4b33"},{"source":"amazon-inspector","sha256":"606cd4c034500fc3b24db606e894a3ea120d0d3b26e7ee85dd28eddcb81add58","import_time":"2026-07-16T18:53:59.752892579Z","id":"IN-MAL-2026-010697","modified_time":"2026-07-16T18:33:52Z","versions":["99.0.0"]},{"import_time":"2026-07-17T03:07:34.450613343Z","modified_time":"2026-07-16T12:44:36Z","versions":["99.0.1"],"source":"ossf-package-analysis","sha256":"39b362e696810bfa8c5720ad97ba58d89920e87f909de311950b0939c731e7f7"}]},"references":[{"type":"PACKAGE","url":"https://www.npmjs.com/package/@across-toolkit/eslint-config/v/99.0.1"},{"type":"PACKAGE","url":"https://www.npmjs.com/package/@across-toolkit/eslint-config/v/99.0.0"}],"affected":[{"package":{"name":"@across-toolkit/eslint-config","ecosystem":"npm","purl":"pkg:npm/%40across-toolkit/eslint-config"},"versions":["99.0.1","99.0.0"],"database_specific":{"cwes":[{"cweId":"CWE-506","description":"The product contains code that appears to be malicious in nature.","name":"Embedded Malicious Code"},{"name":"Embedded Malicious Code","cweId":"CWE-506","description":"The product contains code that appears to be malicious in nature."}],"indicators":{"evidence_files":[{"tlsh":"17a1b5d63ab239241693eb14e35f65015127b50b7d96f880fdad5c010f8e11ca2f35ee","path":"postinstall.js","sha256":"2d48da55e72d0d1c076790b0f3d3fea2d433a0ef6e782590026dc0a7a5177a8e"}],"package_integrity":[{"hashes":{"sha1":"3b54306f3c7faa5e598ef662f717b99f650589ff","sha512_sri":"sha512-8bMpbXirBIL5aYiqjds0MaKmY/+Nbb20pDj9Bj/hP88yIkuW0W2fzWAz10U+ZkmcMHOs97QnrdrYTECsbF4zwA=="},"filename":"eslint-config-99.0.1.tgz"}]},"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/@across-toolkit/eslint-config/MAL-2026-10703.json"}}],"schema_version":"1.7.5","credits":[{"name":"Amazon Inspector","contact":["inspector-research@amazon.com"],"type":"FINDER"},{"name":"OpenSSF: Package Analysis","contact":["https://github.com/ossf/package-analysis","https://openssf.slack.com/channels/package_analysis"],"type":"FINDER"}]}