OSV ID
MAL-2026-3034
Ecosystem
pypi
Summary
During import, package collects basic information about the system, performs deep fingerprinting, and reports the data to the remote target. The package description attempts to build a false impression that it's an official package. The name refers to either ONNYX runtime, or the Pytorch package never released to the PyPI: https://github.com/pytorch/ort/blob/89466e524b0abe3a134418a50beeb405e287cedc/ort_moe/setup.py#L11 --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: 2026-04-promptflow-runtime Reasons (based on the campaign): - The package contains code to exfiltrate basic data from the system, like IP or username. It has a limited risk. - dependency-confusion - impersonation - The package contains code to detect if it is running in a sandbox environment.
Source: kam193 (b07b0d9d87f411b1c481f50084190fdde34edfeb1c9b10368a23abba0ccbcbdc)
Protect your entire dependency tree
Scan your lock files automatically on every PR. Block malicious packages before they reach production.