{"id":"MAL-2026-6989","summary":"Malicious code in ag-charts-test (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: amazon-inspector (29c50b5a47dde18daf83760926662df3b9890de074cc00938de04892ac79a4d9)\nag-charts-test@99.9.1 is a hollow package (empty index.js, no scripts, no documented functionality) whose sole effect on installers is resolving its single dependency `ltidisafe` from a direct HTTPS tarball URL on a third-party Google Cloud Storage bucket (`https://ltidi.storage.googleapis.com/depenconf/ltidisafe-3.1.9.tgz`) rather than through the npm registry. On `npm install`, the tarball is fetched from that bucket and its contents — including any lifecycle scripts — execute on the installer's machine. The bucket owner can mutate the tarball at any time, so the executed bytes are attacker-controlled. The package name mimics the AG Charts / AG Grid namespace and the inflated `99.9.1` version, combined with the `depenconf` path segment on the bucket URL, is the canonical dependency-confusion shape (outbidding an internal `ag-charts-*` name to force resolution of the attacker's package into a private build). No legitimate purpose is documented and the package ships no code of its own.\n\n## Source: ghsa-malware (9075915150ed433ba9729068a51b48f233c3f5366b8fb5ace97015824510c3cc)\nAny computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be rotated immediately from a different computer. The package should be removed, but as full control of the computer may have been given to an outside entity, there is no guarantee that removing the package will remove all malicious software resulting from installing it.\n","aliases":["GHSA-p9cr-rm9c-q8mg"],"modified":"2026-07-10T17:01:58.538719854Z","published":"2026-07-08T16:24:17Z","database_specific":{"malicious-packages-origins":[{"source":"amazon-inspector","modified_time":"2026-07-08T16:24:17Z","versions":["99.9.1"],"id":"IN-MAL-2026-008096","sha256":"29c50b5a47dde18daf83760926662df3b9890de074cc00938de04892ac79a4d9","import_time":"2026-07-08T17:01:30.120527151Z"},{"import_time":"2026-07-10T16:54:13.280220396Z","modified_time":"2026-07-10T16:24:51Z","source":"ghsa-malware","ranges":[{"type":"SEMVER","events":[{"introduced":"0"}]}],"sha256":"9075915150ed433ba9729068a51b48f233c3f5366b8fb5ace97015824510c3cc","id":"GHSA-p9cr-rm9c-q8mg"}]},"references":[{"type":"PACKAGE","url":"https://www.npmjs.com/package/ag-charts-test/v/99.9.1"},{"type":"ADVISORY","url":"https://github.com/advisories/GHSA-p9cr-rm9c-q8mg"}],"affected":[{"package":{"name":"ag-charts-test","ecosystem":"npm","purl":"pkg:npm/ag-charts-test"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"}]}],"versions":["99.9.1"],"database_specific":{"cwes":[{"name":"Embedded Malicious Code","cweId":"CWE-506","description":"The product contains code that appears to be malicious in nature."},{"name":"Embedded Malicious Code","cweId":"CWE-506","description":"The product contains code that appears to be malicious in nature."}],"indicators":{"evidence_files":[{"tlsh":"a7e07d20892155334ec511b1881b6007f3708e4f0404bc0c5aeb042c448ea7338f925d","path":"package.json","sha256":"b375a3b59adf319149753ed5fbf51f3a491e124f7e82ea2002b0ed3f379a2f50"}],"package_integrity":[{"hashes":{"sha512_sri":"sha512-PtNt39P4H6ZNrnbOqrLiZamRTJBQaRyG+LGiopEK1Q+TxwXFeYc+smy1CP7SLSmVC7p0zosjHRW6zy5jZquqww==","sha1":"8291e1bb88de2433081e284b8c15cf27c5da46b8"},"filename":"ag-charts-test-99.9.1.tgz"}]},"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/ag-charts-test/MAL-2026-6989.json"}}],"schema_version":"1.7.5","credits":[{"name":"Amazon Inspector","contact":["inspector-research@amazon.com"],"type":"FINDER"}]}