Shai-Hulud (PyPI)

Attribution basis

These are the signal classes linking the members of this campaign — the broad evidence categories we use to attribute a package, not the raw indicators themselves.

• shared malware fingerprint
• OSV advisory cluster

Sample attributed packages

• obra@3.7.50
• ccsilo@0.6.5
• chimera-run@0.8.0
• claude-agent-sdk@0.2.101
• ciris-agent@2.9.6
• calfkit-tools@0.1.0
• clawdeck@0.5.3
• sumo-qa@0.46.0
• conduct-cli@0.4.95
• conduct-cli@0.4.94
• langchain-agentx-python@1.0.7
• yt-dlp@2026.6.12.235626.dev0
• plato-sdk-v2@2.98.0
• superdoc-sdk@1.16.1
• pmsec@0.14.0
• codeboarding@0.12.2
• praisonai@4.6.56
• nuguard@0.7.3
• skilltotal@0.7.4
• sumo-qa@0.45.0
• deepline@1.0.93
• pdd-cli@0.0.272
• mindroom@2026.6.140
• claude-jacked@0.46.5
• praisonai@4.6.55
• arifos@2026.6.12
• mindroom@2026.6.139
• deepagents-code@0.1.15
• claude-mpm@6.5.41
• ralph-workflow@0.8.12

PkgRadar attributes coordinated supply-chain campaigns and blocks their packages at the CI gate. Start free or see all tracked campaigns.