VYPR

npm · Malicious package advisory

Malware

ask-my-llm

MAL-2026-4484

Malicious code in ask-my-llm (npm)

Details


---
_-= Per source details. Do not edit below this line.=-_

## Source: amazon-inspector (9429d8e8e36f3d97c246ce408491ea570ab5d3f5e7cb2481a3c2ea4b7c8477b8)
index.js requires child_process and contains hardcoded POST calls to https://cows.info.gf at lines 67 and 100, alongside references to process.env at line 6 and a spawn('curl',...) invocation at line 108. The combination of a hardcoded non-publisher exfiltration endpoint, environment-variable access, and shell-out to curl in the package's main module constitutes an exfiltration / C2 fingerprint with no benign interpretation: a package describing itself as an LLM helper has no legitimate need to POST to a personal.gf domain or shell out to curl for network I/O when a normal HTTP client would suffice. The endpoint cows.info.gf is not associated with any known LLM provider and is structured as an attacker-controlled drop site.

Compromised versions (3)

  • 1.1.5
  • 1.1.4
  • 1.1.3

Any computer that installed or ran a compromised version should be considered fully compromised. Rotate every secret on that machine from a clean environment.