math-array-tools @0.250.211
Vulnerability report · Last retrieved from osv.dev June 23, 2026 at 3:29 AM UTC
OSV ID
MAL-2026-3705
Ecosystem
pypi
Summary
During installation, package exfiltrates some basic info to a GitHub issue comment, and then attempt to set up a persistent infostealer focused on exfiltrating crypto wallets and browsers data. Likely continuation of 2026-05-py-requests --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: 2025-06-alembic-util Reasons (based on the campaign): - infostealer - The package overrides the install command in setup.py to execute malicious code during installation. - crypto-related - Downloads and executes a remote malicious script. - exfiltration-browser-data - exfiltration-crypto - persistence - typosquatting
Source: kam193 (1b6411ce9c35210436bef6dadb284e5d89ec85c2cc17f970509aa4b5f30c2440)
Protect your entire dependency tree
Scan your lock files automatically on every PR. Block malicious packages before they reach production.