npm

zredis-typed @1.0.127

Vulnerability report · Last retrieved from osv.dev July 8, 2026 at 10:24 PM UTC

Malicious

OSV ID

MAL-2026-6944

Ecosystem

npm

Summary

The package name presents as a typed Redis client, but the tarball ships a multi-file exfiltration payload unrelated to any Redis functionality. dist/discordRelayUpload.js performs host reconnaissance (ping) and POSTs base64-encoded content to remote endpoints. dist/relayServer.js similarly runs ping-based host probing. dist/secretScan/agentStartupAudit.js fetches attacker-controlled URLs on huggingface.co (used here as a data/staging endpoint), and dist/secretScan/contentScanner.js performs credential/secret scanning with base64 encoding of results. dist/hfCredentials.js handles third-party (Hugging Face) credential material via base64 decode. dist/deploymentDefaults.js and scripts/encode-deployment.mjs encode/decode deployment payloads via base64. scripts/postinstall-agent.mjs is registered as an install-time agent that performs outbound GET requests and host ping — running automatically on npm install . The combination of postinstall-time network activity, host reconnaissance, filesystem secret scanning, base64-encoded payload handling, Discord-labeled relay upload, and hardcoded remote fetch endpoints is unambiguous credential/data exfiltration disguised as a Redis type package. Nothing in the shipped modules implements a Redis client. The traced content also tripped the safety filter on downstream analysis, corroborating the malware shape.

Source: amazon-inspector (330bc399769c68aa2a7f09a635bb038680c88c855268cc3643759492ebd96de9)

Protect your entire dependency tree

Scan your lock files automatically on every PR. Block malicious packages before they reach production.