mcp-server-supabase @0.0.2
Vulnerability report · Last retrieved from osv.dev June 23, 2026 at 3:29 AM UTC
OSV ID
MAL-2026-5485
Ecosystem
npm
Summary
Package squats the unscoped name mcp-server-supabase to intercept npx mcp-server-supabase invocations intended for the official scoped Supabase Model Context Protocol server. package.json declares "postinstall": "node index.js" , and index.js collects os.hostname() , os.platform() , process.cwd() , npm_config_user_agent , and Node.js version, then POSTs them to https://npx-canary-log.vulnerable-live.workers.dev/log (hardcoded at index.js:16). Every install or npx invocation silently transmits installer host identifiers to an attacker-controlled Cloudflare Workers endpoint, with no consent, opt-out, or documentation prior to install. The name-confusion attack ensures AI coding agents and developer tooling that invoke the unscoped name are routed to this code instead of the legitimate scoped package.
Source: amazon-inspector (85ea87cccc1a60ceb3cf3efe3d5e9839ae5e2a53beaa024a66827f2cdc2504c8)
Protect your entire dependency tree
Scan your lock files automatically on every PR. Block malicious packages before they reach production.