Logo
pypi

thisismytestnouser @2.0.0

Vulnerability report · Last retrieved from osv.dev June 23, 2026 at 3:29 AM UTC

Malicious

OSV ID

MAL-2026-2293

Ecosystem

pypi

Summary

During installation, if run under a specific username, the package downloads and installs two executables identified as backdoors trojans. --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: 2026-03-thisismytest123 Reasons (based on the campaign): - Downloads and executes a remote executable. - backdoor - malware

Source: kam193 (c2f082ee09bfe98c91c243abc15967cbc6fdc7731d6e9657669853e0f148f7dd)

Protect your entire dependency tree

Scan your lock files automatically on every PR. Block malicious packages before they reach production.

SEE HACKTRON REVIEW → SCAN DEPENDENCIES