{"id":"MAL-2026-4368","summary":"Malicious code in @beyondbday/vibe-terminal (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: amazon-inspector (9859c1af428f41ba7f7eb2a1db744705f5644ff2422629d94e3de1ecb59c9405)\nOn every launch of the `vibe` CLI, dist/vibe.js queries the npm registry for the latest version of @beyondbday/vibe-terminal and, if newer than the running version, executes `npm install -g @beyondbday/vibe-terminal@latest` in the background with no user prompt, no version pinning, and no integrity verification. This establishes a permanent, mutable code-update channel under the publisher's control: any future version pushed to npm — whether by the legitimate maintainer or by anyone who compromises the npm account — is automatically installed globally on every user's machine the next time they run the CLI. The installer loses the ability to vet new versions, pin to a known-good release, or detect a malicious upgrade. The package additionally ships a hardcoded `sk-...` API key for opencode.ai as the default provider, so all user prompts and tool outputs (including file contents the assistant is asked to read) are relayed to opencode.ai by default; this is documented in the README and uses the author's own key, so it is a disclosed concern rather than the primary basis for blocking. A third undocumented provider endpoint at opengateway.gitlawb.com is also preconfigured but gated behind explicit user selection.\n","modified":"2026-05-27T00:31:53.178892402Z","published":"2026-05-25T17:23:19Z","withdrawn":"2026-05-26T20:50:05Z","database_specific":{"malicious-packages-origins":[{"modified_time":"2026-05-25T17:23:19Z","versions":["1.1.14"],"id":"IN-MAL-2026-004730","sha256":"43e05b5dbe5a6dc12f8096ce549c6cc645fde2efc954201f847bb72676993221","import_time":"2026-05-26T05:53:10.381575744Z","source":"amazon-inspector"},{"versions":["1.1.21"],"modified_time":"2026-05-25T18:48:43Z","source":"amazon-inspector","sha256":"9859c1af428f41ba7f7eb2a1db744705f5644ff2422629d94e3de1ecb59c9405","import_time":"2026-05-26T05:53:13.409617423Z","id":"IN-MAL-2026-004756"},{"modified_time":"2026-05-25T17:49:33Z","versions":["1.1.16"],"id":"IN-MAL-2026-004737","sha256":"989da9f9a65491034597f7d51b866248bf126b77469b6efa744834c5ac45afac","import_time":"2026-05-26T05:53:11.23684919Z","source":"amazon-inspector"},{"modified_time":"2026-05-25T18:09:56Z","versions":["1.1.17"],"id":"IN-MAL-2026-004743","sha256":"df0e070435f3ffe3b7e868ee4f0a1750ea23dc7c7b5e62d93161d72690ac5d47","import_time":"2026-05-26T05:53:11.947594134Z","source":"amazon-inspector"}]},"references":[{"type":"PACKAGE","url":"https://www.npmjs.com/package/@beyondbday/vibe-terminal/v/1.1.14"},{"type":"PACKAGE","url":"https://www.npmjs.com/package/@beyondbday/vibe-terminal/v/1.1.21"},{"type":"PACKAGE","url":"https://www.npmjs.com/package/@beyondbday/vibe-terminal/v/1.1.16"},{"type":"PACKAGE","url":"https://www.npmjs.com/package/@beyondbday/vibe-terminal/v/1.1.17"}],"affected":[{"package":{"name":"@beyondbday/vibe-terminal","ecosystem":"npm","purl":"pkg:npm/%40beyondbday%2Fvibe-terminal"},"versions":["1.1.14","1.1.21","1.1.16","1.1.17"],"database_specific":{"indicators":{"evidence_files":[{"tlsh":"1644b71469b321230313a0b63d47940eb6a5904b3909dd74faccfa687fda568e1f6bdc","sha256":"14cb394c9d67ccc7ece0d7c9cca76dafc3a948855777cbbffc3bc55a98bd00e1","path":"dist/vibe.js"}],"package_integrity":[{"hashes":{"sha512_sri":"sha512-u7RNPEiG8cWTnpfFr8FwbRn5CC/G9cPd2lBsu7JRMjuetd+Cjsv2r4KVQbUbyjx3ksMID6+h7Pku17teL29T1Q==","sha1":"f8e1872f4ba478982cec4708a41b27fc846a16f6"},"filename":"vibe-terminal-1.1.14.tgz"}]},"cwes":[{"name":"Embedded Malicious Code","cweId":"CWE-506","description":"The product contains code that appears to be malicious in nature."},{"name":"Embedded Malicious Code","cweId":"CWE-506","description":"The product contains code that appears to be malicious in nature."},{"name":"Embedded Malicious Code","cweId":"CWE-506","description":"The product contains code that appears to be malicious in nature."},{"name":"Embedded Malicious Code","cweId":"CWE-506","description":"The product contains code that appears to be malicious in nature."}],"source":"https://github.com/ossf/malicious-packages/blob/main/osv/withdrawn/npm/@beyondbday/vibe-terminal/MAL-2026-4368.json"}}],"schema_version":"1.7.5","credits":[{"name":"Amazon Inspector","contact":["actran@amazon.com"],"type":"FINDER"}]}