Package evidence

[email protected]

Install-time lifecycle script: postinstall="echo '\\n ecc-universal installed!\\n Run: npx ecc typescript\\n Compat: npx ecc-install typescript\\n Docs: https://github.com/affaan-m/everything-claude-code\\n'"

Recommended action

Block this update

Static evidence trips multiple high-signal indicators. Quarantine the release until the publisher validates the change or you can rule out the indicators below.

Inspect tarball Add to CI gate

Block this release in CIcurl · GitHub Actions

Fail the build when this package version is added or upgraded. Replace $PKGRADAR_TOKEN with a Pro / Team API key from your dashboard.

curl -fsS https://pkgradar.com/gate/npm \
  -H "Authorization: Bearer $PKGRADAR_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{"specs":["[email protected]"],"fail_on":"high"}'

GitHub Actions step:

- name: PkgRadar gate
  run: |
    curl -fsS https://pkgradar.com/gate/npm \
      -H "Authorization: Bearer ${{ secrets.PKGRADAR_TOKEN }}" \
      -H "Content-Type: application/json" \
      -d '{"specs":["[email protected]"],"fail_on":"high"}'

Publisherprathameshmhatre

Artifact bytes1,297,229

Previous version1.4.51

Published2026-05-24T17:31:14.933Z

SHA-2561c9ab5a7321bdd349fb10affd775a08b0c5ad3d91340639e8500b8d3d2e2387f

Why flagged

What the scanner saw

Not observed: package install, lifecycle script execution, or sandbox execution. PkgRadar only inspects on-disk artifacts.

Availability ledger

available

high

19d agoLast checked

highRisk

56Score

1.4.61Version

Status history (2 events)

available → available19d ago · risk high · score 56 · status available -> available, risk high -> high, score 85 -> 56
new → available20d ago · risk high · score 85 · status changed

Related candidates

Linked campaigns and clusters

Publisher / release actor burststale

prathameshmhatre

2 members · evidence strength 67

Repeated static TTPstale

Install-time lifecycle script — postinstall="echo '\\n ecc-universal installed!\\n run: npx ecc typescript\\n compat: npx ecc-install typescript\\n docs: https://github.com/affaan-m/everything-claude-code\\n'"

2 members · evidence strength 67

Evidence

Static findings

9 static · 0 from release diff · showing high-signal first.

Severity	Kind	Path	Detail	Points
high	Install-time lifecycle script	package.json	postinstall="echo '\\n ecc-universal installed!\\n Run: npx ecc typescript\\n Compat: npx ecc-install typescript\\n Docs: https://github.com/affaan-m/everything-claude-code\\n'"	30

Show all 9 findings (low-signal and informational)

Severity	Kind	Path	Detail	Points
high	Install-time lifecycle script	package.json	postinstall="echo '\\n ecc-universal installed!\\n Run: npx ecc typescript\\n Compat: npx ecc-install typescript\\n Docs: https://github.com/affaan-m/everything-claude-code\\n'"	30
low	Credential file access	package/scripts/hooks/governance-capture.js	matched "github_token"	5
low	Obfuscation	package/scripts/lib/skill-evolution/dashboard.js	matched "\\u2581"	3
low	Obfuscation	package/scripts/skill-create-output.js	matched "\\x1b"	3
low	Obfuscation	package/scripts/lib/utils.js	matched "\\x1b"	3
low	Obfuscation	package/scripts/ci/validate-agents.js	matched "\\uFEFF"	3
low	Obfuscation	package/manifests/install-modules.json	matched "\\u2192"	3
low	Obfuscation	package/skills/continuous-learning-v2/scripts/instinct-cli.py	matched "\\u26a0"	3
low	Obfuscation	package/.opencode/tools/security-audit.ts	matched "eval("	3

Manifest

Package metadata

Scripts15

clawnode scripts/claw.js
coveragec8 --all --include="scripts/**/*.js" --check-coverage --lines 80 --functions 80 --branches 80 --statements 80 --reporter=text --reporter=lcov node tests/run-all.js
eval:aw:fresh-env-cli-smokebash tests/evals/run-aw-fresh-env-cli-smoke.sh
eval:aw:published-package-e2ebash tests/evals/run-aw-published-package-e2e.sh
eval:aw:release-gatebash tests/evals/run-aw-release-gate.sh
generate-hooksnode scripts/generate-aw-hooks.js
harness:auditnode scripts/harness-audit.js
linteslint . && markdownlint '**/*.md' --ignore node_modules --ignore tests/results --ignore skills/using-aw-skills/evals/results --ignore docs/pt-BR --ignore docs/tr --ignore docs/zh-CN
orchestrate:statusnode scripts/orchestration-status.js
orchestrate:tmuxnode scripts/orchestrate-worktrees.js
orchestrate:workerbash scripts/orchestrate-codex-worker.sh
postinstallecho '\n ecc-universal installed!\n Run: npx ecc typescript\n Compat: npx ecc-install typescript\n Docs: https://github.com/affaan-m/everything-claude-code\n'
preparenpm run generate-hooks
testnode scripts/ci/validate-agents.js && node scripts/ci/validate-commands.js && node scripts/ci/validate-rules.js && node scripts/ci/validate-skills.js && node scripts/ci/validate-hooks.js && node scripts/ci/validate-install-manifests.js && node scripts/ci/validate-no-personal-paths.js && node scripts/ci/catalog.js --text && node tests/run-all.js
test:hook-contractsnode tests/hooks/harness-hook-output-contracts.test.js

Dependencies3

@iarna/toml^2.2.5
ajv^8.18.0
sql.js^1.14.1