typelimagic @1.1.3
Vulnerability report · Last retrieved from osv.dev June 23, 2026 at 4:30 AM UTC
OSV ID
MAL-2026-2963
Ecosystem
pypi
Summary
Clone of a legitimate library. The added code scans system for sensitive files, with the focus on crypto currency wallets, and exfiltrate them. Previous versions included executing remote commands. --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: 2026-04-typelimagic Reasons (based on the campaign): - obfuscation - clones-real-package - crypto-related - exfiltration-crypto - The package contains code to execute remote commands (probably limited to a specific set) on the victim's machine.
Source: kam193 (7fcef0c386cca43024460aa4a1b47a99109e4ba02159a8fbe426c12f9884a83e)
Protect your entire dependency tree
Scan your lock files automatically on every PR. Block malicious packages before they reach production.