VYPR

npm · Malicious package advisory

Malware

ipy-rev-proxy

MAL-2026-5475

Malicious code in ipy-rev-proxy (npm)

Details


---
_-= Per source details. Do not edit below this line.=-_

## Source: amazon-inspector (591a0d253aee02115544f9bcac7609e62d8c18a9ac60cc4967d7d6e8c7f7d555)
On `npm install`, index.js runs as a preinstall hook and POSTs hostname, username, platform, architecture, cwd, CI flags, and npm user-agent to https://webhook.site/40b5f3e2-4072-4f2c-b259-0ecb531755d7. The same script then probes Google's internal SSO proxy at http://uberproxy.corp.google.com/procz and the GCE metadata endpoint http://metadata.google.internal/computeMetadata/v1/instance/service-accounts/default/token (with the required `Metadata-Flavor: Google` header) and forwards any 200 response — including GCE service-account tokens — plus `hostname`, `id`, and `uname -a` output to the same webhook. The package presents itself with a generic Jupyter description and the placeholder author 'IPython Development Team' but ships no functional code matching that description; the name and metadata are consistent with a dependency-confusion lure aimed at Google internal builds.

Compromised versions (1)

  • 9.3.1

Any computer that installed or ran a compromised version should be considered fully compromised. Rotate every secret on that machine from a clean environment.