npm · registry.npmjs.org
tomevault
Llm Injection Payload: AI-agent-directed instruction adjacent to credential exfil — prompt-injection payload (Shai-Hulud / SANDWORM_MODE). imperative="Ignore previous instructions" target=".ssh/id_rsa"
Why PkgRadar flagged 1.6.0
| Severity | Signal | Evidence |
|---|---|---|
| high | Llm Injection Payload | AI-agent-directed instruction adjacent to credential exfil — prompt-injection payload (Shai-Hulud / SANDWORM_MODE). imperative="Ignore previous instructions" target=".ssh/id_rsa" · package/src/engine/scan-engine.mjs |
| medium | Remote Payload | matched "raw.githubusercontent.com" · package/src/commands/init.mjs |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
1.6.0 | High risk | 57 | 2026-06-15 |
1.3.0 | Review | 12 | 2026-06-14 |
1.5.0 | High risk | 57 | 2026-06-14 |
1.3.1 | Review | 12 | 2026-06-03 |
1.4.0 | Review | 17 | 2026-06-03 |
Block this in CI
pkgradar gate --ecosystem npm [email protected]