Package evidence

@gakr-gakr/[email protected]

Webhook Exfil Endpoint: matched "ngrok.app"

Trust signals

Why this verdict

PkgRadar discounts a release’s score when public reputation argues against novel malware. The verdict above already reflects these — the panel just explains what was applied.

Weekly downloads: 115
Versions published: 1
First published: May 2026
Publisher: gakr

Recommended action

Block this update

Static evidence trips multiple high-signal indicators. Quarantine the release until the publisher validates the change or you can rule out the indicators below.

Inspect tarball Add to CI gate

Block this release in CIcurl · GitHub Actions

Fail the build when this package version is added or upgraded. Replace $PKGRADAR_TOKEN with a Pro / Team API key from your dashboard.

curl -fsS https://pkgradar.com/gate/npm \
  -H "Authorization: Bearer $PKGRADAR_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{"specs":["@gakr-gakr/[email protected]"],"fail_on":"high"}'

GitHub Actions step:

- name: PkgRadar gate
  run: |
    curl -fsS https://pkgradar.com/gate/npm \
      -H "Authorization: Bearer ${{ secrets.PKGRADAR_TOKEN }}" \
      -H "Content-Type: application/json" \
      -d '{"specs":["@gakr-gakr/[email protected]"],"fail_on":"high"}'

Publishergakr

Artifact bytes30,797,559

Previous versionnone

Published2026-05-24T07:59:24.562Z

SHA-256a1c5d9228243c6733765dc91c49765fe973dd7220b2fb746fd9a46c8126bf14c

Why flagged

What the scanner saw

Webhook Exfil Endpoint: matched "ngrok.app"

Not observed: package install, lifecycle script execution, or sandbox execution. PkgRadar only inspects on-disk artifacts.

Availability ledger

scan error

status

3h agoLast checked

noneRisk

—Score

0.1.0Version

Latest scanner note: HTTP status client error (404 Not Found) for url (https://registry.npmjs.org/%40gakr-gakr%2Fautobot)

Status history (5 events)

available → scan_error14d ago · risk none · score — · HTTP status client error (404 Not Found) for url (https://registry.npmjs.org/%40gakr-gakr%2Fautobot)
available → available19d ago · risk high · score 364 · status available -> available, risk high -> high, score 372 -> 364
available → available19d ago · risk high · score 372 · status available -> available, risk high -> high, score 422 -> 372
available → available19d ago · risk high · score 422 · status available -> available, risk high -> high, score 2877 -> 422
new → available20d ago · risk high · score 2877 · status changed

Related candidates

Linked campaigns and clusters

Repeated static TTPstale

DNS / OAST exfiltration — matched "dns.lookup"

38 members · evidence strength 90

Repeated static TTPstale

Install-time lifecycle script — preinstall="node scripts/preinstall-package-manager-warning.mjs"

51 members · evidence strength 90

Repeated static TTPstale

Install-time lifecycle script — postinstall="node scripts/postinstall-bundled-plugins.mjs"

46 members · evidence strength 90

Publisher / release actor burststale

gakr

3 members · evidence strength 77

Repeated static TTPstale

Install Lifecycle Suppresses Failure — prepare="command -v git >/dev/null 2>&1 && git rev-parse --is-inside-work-tree >/dev/null 2>&1 && git config core.hooksPath git-hooks || exit 0"

17 members · evidence strength 90

Evidence

Static findings

241 static · 0 from release diff · showing high-signal first.

Severity	Kind	Path	Detail	Points
high	Webhook Exfil Endpoint	package/dist/dist-8LASmT1Y.js	matched "ngrok.app"	40
high	Webhook Exfil Endpoint	package/dist/guarded-json-api-vVCgGKts.js	matched "ngrok-free.app"	40
high	DNS / OAST exfiltration	package/dist/fetch-DxVVai_w.js	matched "dns.lookup"	30
high	DNS / OAST exfiltration	package/dist/provider-CxWE2uui.js	matched "dns.lookup"	30
medium	Obfuscation Density	package/dist/crypto-runtime-B-eP01Rh.js	high encoded/escaped-token density	12
medium	Remote Payload	package/skills/openai-whisper-api/scripts/transcribe.sh	matched "curl "	12
medium	Credential file access	package/dist/install-package-dir-BdTJ6veU.js	matched ".npmrc"	10
medium	Credential file access	package/dist/npm-install-env-DLHFd1ZY.js	matched ".npmrc"	10
medium	Credential file access	package/dist/npm-managed-root-Cb2-5NYd.js	matched ".npmrc"	10

Show all 241 findings (low-signal and informational)

Showing 60 of 241 findings.

Severity	Kind	Path	Detail	Points
high	Webhook Exfil Endpoint	package/dist/dist-8LASmT1Y.js	matched "ngrok.app"	40
high	Webhook Exfil Endpoint	package/dist/guarded-json-api-vVCgGKts.js	matched "ngrok-free.app"	40
high	DNS / OAST exfiltration	package/dist/fetch-DxVVai_w.js	matched "dns.lookup"	30
high	DNS / OAST exfiltration	package/dist/provider-CxWE2uui.js	matched "dns.lookup"	30
medium	Obfuscation Density	package/dist/crypto-runtime-B-eP01Rh.js	high encoded/escaped-token density	12
medium	Remote Payload	package/skills/openai-whisper-api/scripts/transcribe.sh	matched "curl "	12
medium	Credential file access	package/dist/install-package-dir-BdTJ6veU.js	matched ".npmrc"	10
medium	Credential file access	package/dist/npm-install-env-DLHFd1ZY.js	matched ".npmrc"	10
medium	Credential file access	package/dist/npm-managed-root-Cb2-5NYd.js	matched ".npmrc"	10
low	Credential file access	package/dist/auth-BxLu_1yV.js	matched "GITHUB_TOKEN"	5
low	Credential file access	package/dist/browser-bridges-f3XDAwQq.js	matched ".ssh"	5
low	Credential file access	package/dist/channel.runtime-BHkwvbOe.js	matched "AWS_ACCESS_KEY"	5
low	Credential file access	package/dist/dist-8LASmT1Y.js	matched ".aws"	5
low	Credential file access	package/dist/dist-cjs-BBQaiP8x.js	matched ".aws"	5
low	Credential file access	package/dist/dist-cjs-BRw03aeK.js	matched ".aws"	5
low	Credential file access	package/dist/dist-cjs-C0bgmiR4.js	matched "AWS_ACCESS_KEY"	5
low	Credential file access	package/dist/dist-cjs-ChE0Ol2J.js	matched ".aws"	5
low	Credential file access	package/dist/dist-cjs-DeWiePFP.js	matched ".aws"	5
low	Credential file access	package/dist/dist-cjs-EZLtMryJ.js	matched ".aws"	5
low	Credential file access	package/dist/dist-CkQ0cN7M.js	matched ".azure"	5
low	Credential file access	package/dist/doctor-auth-flat-profiles-r8jCV1h6.js	matched ".aws"	5
low	Credential file access	package/dist/host-env-security-D7T9KRdj.js	matched "KUBECONFIG"	5
low	Credential file access	package/dist/image-generation-provider-BshsOSGl.js	matched ".azure"	5
low	Credential file access	package/dist/extensions/github-copilot/index.js	matched "GITHUB_TOKEN"	5
low	Credential file access	package/dist/model-auth-CjunDzJw.js	matched "AWS_ACCESS_KEY"	5
low	Credential file access	package/dist/model-auth-markers-CrzTMczo.js	matched "AWS_ACCESS_KEY"	5
low	Credential file access	package/dist/model-auth-runtime-shared-DAhI9GRn.js	matched "AWS_ACCESS_KEY"	5
low	Credential file access	package/dist/onboard-custom-config-BKXmClPt.js	matched ".azure"	5
low	Credential file access	package/dist/onboard-OHLSooN-.js	matched ".azure"	5
low	Credential file access	package/dist/onboard-remote-CB3UZiEj.js	matched ".ssh"	5
low	Credential file access	package/dist/openai-transport-stream-uuW8uTnG.js	matched ".azure"	5
low	Credential file access	package/dist/protocols-XtF8I7LD.js	matched ".aws"	5
low	Credential file access	package/dist/provider-contract-api-C4w2yCdE.js	matched "GOOGLE_APPLICATION_CREDENTIALS"	5
low	Credential file access	package/dist/plugin-sdk/provider-test-contracts.js	matched "GITHUB_TOKEN"	5
low	Credential file access	package/dist/runtime-config-collectors-fE1MuxvG.js	matched ".ssh"	5
low	Credential file access	package/dist/runtime-schema-Dwn9kQgp.js	matched ".ssh"	5
low	Credential file access	package/dist/service-DEIQGNw4.js	matched "GITHUB_TOKEN"	5
low	Credential file access	package/dist/shared-CbrqHCxu.js	matched ".azure"	5
low	Credential file access	package/dist/signin-Bltooox3.js	matched ".aws"	5
low	Credential file access	package/dist/speech-provider-4pvnvZLK.js	matched ".azure"	5
low	Credential file access	package/dist/src-Br68gd8d.js	matched "AWS_ACCESS_KEY"	5
low	Credential file access	package/dist/ssh-config-B6In2eqW.js	matched ".ssh"	5
low	Credential file access	package/dist/transport-policy-w-stjYDI.js	matched ".azure"	5
low	Credential file access	package/dist/validate-sandbox-security-CO6QJWfL.js	matched ".aws"	5
low	Credential file access	package/dist/vertex-adc-xGqInZRk.js	matched "GOOGLE_APPLICATION_CREDENTIALS"	5
low	Install-time lifecycle script	package.json	preinstall="node scripts/preinstall-package-manager-warning.mjs"	5
low	Install-time lifecycle script	package.json	postinstall="node scripts/postinstall-bundled-plugins.mjs"	5
low	Obfuscation	package/dist/canvas-host/a2ui/a2ui.bundle.js	matched "atob("	3
low	Obfuscation	package/dist/acp-cli-DNNscCLL.js	matched "\\u2028"	3
low	Obfuscation	package/dist/control-ui/assets/agents-BPYcD3l9.js	matched "\\x00"	3
low	Obfuscation	package/dist/allow-from-store-file-DAOodpea.js	matched "\\u0000"	3
low	Obfuscation	package/dist/ansi-Bk0Jp_0O.js	matched "\\x1b"	3
low	Obfuscation	package/dist/APEv2Parser-CimZMXvp.js	matched "\\x21"	3
low	Obfuscation	package/dist/apply-C3CHKcjG.js	matched "\\x60"	3
low	Obfuscation	package/dist/ara-BnfFCpkO.js	matched "\\x7F"	3
low	Obfuscation	package/dist/attachment-normalize-_VcQAQY9.js	matched "Buffer.from(b64, \"base64"	3
low	Obfuscation	package/dist/audit-extra.async-DYh_yUOU.js	matched "\\u0000"	3
low	Obfuscation	package/dist/autobot-tools-CoCvw_YZ.js	matched "Buffer.from(canonicalBase64"	3
low	Obfuscation	package/dist/backend-config-DgCrfvDn.js	matched "\\u0000"	3
low	Obfuscation	package/dist/bash-tools-m0C-xPL1.js	matched "Eval("	3

Manifest

Package metadata

Scripts412

android:assemblecd apps/android && ./gradlew :app:assemblePlayDebug
android:assemble:third-partycd apps/android && ./gradlew :app:assembleThirdPartyDebug
android:bundle:releasebun apps/android/scripts/build-release-aab.ts
android:formatcd apps/android && ./gradlew :app:ktlintFormat :benchmark:ktlintFormat
android:installcd apps/android && ./gradlew :app:installPlayDebug
android:install:third-partycd apps/android && ./gradlew :app:installThirdPartyDebug
android:lintcd apps/android && ./gradlew :app:ktlintCheck :benchmark:ktlintCheck
android:lint:androidcd apps/android && ./gradlew :app:lintDebug
android:runcd apps/android && ./gradlew :app:installPlayDebug && adb shell am start -n ai.autobot.app/.MainActivity
android:run:third-partycd apps/android && ./gradlew :app:installThirdPartyDebug && adb shell am start -n ai.autobot.app/.MainActivity
android:testcd apps/android && ./gradlew :app:testPlayDebugUnitTest
android:test:integrationAUTOBOT_LIVE_TEST=1 AUTOBOT_LIVE_ANDROID_NODE=1 node scripts/run-vitest.mjs run --config test/vitest/vitest.live.config.ts src/gateway/android-node.capabilities.live.test.ts
android:test:third-partycd apps/android && ./gradlew :app:testThirdPartyDebugUnitTest
audit:seamsnode scripts/audit-seams.mjs
autobotnode scripts/run-node.mjs
autobot:rpcnode scripts/run-node.mjs agent --mode rpc --json
buildnode scripts/build-all.mjs
build:ci-artifactsnode scripts/build-all.mjs ciArtifacts
build:dockernode scripts/tsdown-build.mjs && node scripts/check-cli-bootstrap-imports.mjs && node scripts/runtime-postbuild.mjs && node scripts/build-stamp.mjs && node scripts/runtime-postbuild-stamp.mjs && pnpm plugins:assets:build && pnpm plugins:assets:copy && node --experimental-strip-types scripts/copy-hook-metadata.ts && node --experimental-strip-types scripts/copy-export-html-templates.ts && node --experimental-strip-types scripts/write-build-info.ts && node --experimental-strip-types scripts/write-cli-startup-metadata.ts && node --experimental-strip-types scripts/write-cli-compat.ts
build:plugin-sdk:dtsnode scripts/run-tsgo.mjs -p tsconfig.plugin-sdk.dts.json --declaration true
build:plugin-sdk:strict-smokepnpm build:plugin-sdk:dts && node --experimental-strip-types scripts/write-plugin-sdk-entry-dts.ts
build:strict-smokepnpm plugins:assets:build && node scripts/tsdown-build.mjs && node scripts/check-cli-bootstrap-imports.mjs && node scripts/runtime-postbuild.mjs && node scripts/build-stamp.mjs && node scripts/runtime-postbuild-stamp.mjs && pnpm build:plugin-sdk:dts && node --experimental-strip-types scripts/write-plugin-sdk-entry-dts.ts && node scripts/check-plugin-sdk-exports.mjs
canvas:a2ui:bundlenode scripts/bundle-a2ui.mjs
changed:lanesnode scripts/changed-lanes.mjs
checknode scripts/check.mjs
check:architecturepnpm check:import-cycles && pnpm check:madge-import-cycles && pnpm check:deprecated-api-usage && pnpm check:deprecated-jsdoc
check:base-config-schemanode --import tsx scripts/generate-base-config-schema.ts --check
check:bundled-channel-config-metadatanode --import tsx scripts/generate-bundled-channel-config-metadata.ts --check
check:changednode scripts/check-changed.mjs
check:changelog-attributionsnode scripts/check-changelog-attributions.mjs
…and 382 more.

Dependencies51

@agentclientprotocol/sdk0.21.1
@clack/core1.3.1
@clack/prompts1.4.0
@earendil-works/pi-agent-core0.75.1
@earendil-works/pi-ai0.75.1
@earendil-works/pi-coding-agent0.75.1
@earendil-works/pi-tui0.75.1
@google/genai2.3.0
@grammyjs/runner2.0.3
@grammyjs/transformer-throttler1.2.1
@homebridge/ciao1.3.8
@lydell/node-pty1.2.0-beta.12
@modelcontextprotocol/sdk1.29.0
@mozilla/readability0.6.0
@openai/codex^0.133.0
@openclaw/fs-safe0.2.4
@openclaw/proxyline0.3.3
ajv8.20.0
chalk5.6.2
chokidar5.0.0
commander14.0.3
croner10.0.1
dotenv17.4.2
express5.2.1
file-type22.0.1
grammy1.42.0
ipaddr.js2.4.0
jiti2.7.0
json52.2.3
jszip3.10.1
…and 21 more.

Optional dependencies2

sharp0.34.5
sqlite-vec0.1.9