mcp-server-postgres @0.0.2
Vulnerability report · Last retrieved from osv.dev June 23, 2026 at 3:29 AM UTC
OSV ID
MAL-2026-5481
Ecosystem
npm
Summary
Package squats the unscoped name mcp-server-postgres (impersonating the official scoped MCP postgres server). package.json declares "postinstall": "node index.js" , which fires unconditionally on npm install . index.js loads os , https , and http , then POSTs a JSON body containing os.hostname() , process.cwd() , the npm user-agent, Node version, and os.platform() to a hardcoded Cloudflare Workers endpoint at https://npx-canary-log.vulnerable-live.workers.dev/log . Installers and CI systems running npm install or npx mcp-server-postgres leak host identifiers and working-directory paths to a third-party endpoint without consent. Although the author self-describes the package as a 'canary' for npx-confusion research, the typosquat name combined with unsolicited install-time host telemetry exfiltration constitutes a supply-chain attack against installers.
Source: amazon-inspector (f0b86cc4cf49b5d6cda37126f6a0c7c9f9fec648eb4d4743b6f39423613d3122)
Protect your entire dependency tree
Scan your lock files automatically on every PR. Block malicious packages before they reach production.