Package evidence

[email protected]

Credential file access: matched ".ssh"

Recommended action

Block this update

Static evidence trips multiple high-signal indicators. Quarantine the release until the publisher validates the change or you can rule out the indicators below.

Inspect tarball Add to CI gate

Block this release in CIcurl · GitHub Actions

Fail the build when this package version is added or upgraded. Replace $PKGRADAR_TOKEN with a Pro / Team API key from your dashboard.

curl -fsS https://pkgradar.com/gate/npm \
  -H "Authorization: Bearer $PKGRADAR_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{"specs":["[email protected]"],"fail_on":"high"}'

GitHub Actions step:

- name: PkgRadar gate
  run: |
    curl -fsS https://pkgradar.com/gate/npm \
      -H "Authorization: Bearer ${{ secrets.PKGRADAR_TOKEN }}" \
      -H "Content-Type: application/json" \
      -d '{"specs":["[email protected]"],"fail_on":"high"}'

Publisherumyunsang

Artifact bytes9,905,285

Previous version0.0.0-namecheck

Published2026-05-07T15:51:34.925Z

SHA-2566fff4257b4f58d8bd23f3ce55c13e7d4772e9116a39a324d500a3035592c9662

Why flagged

What the scanner saw

Credential file access: matched ".ssh"

Not observed: package install, lifecycle script execution, or sandbox execution. PkgRadar only inspects on-disk artifacts.

Availability ledger

not present

status

4d agoLast checked

noneRisk

—Score

0.1.0Version

Latest scanner note: [email protected] not present in registry metadata

Status history (2 events)

available → not_present23d ago · risk none · score — · [email protected] not present in registry metadata
new → available24d ago · risk high · score 1452 · status changed

Related candidates

Linked campaigns and clusters

Repeated static TTPstale

Credential file access — matched "kubeconfig"

19 members · evidence strength 90

Publisher / release actor burststale

umyunsang

2 members · evidence strength 64

Evidence

Static findings

142 static · 0 from release diff · showing high-signal first.

Showing 30 of 56 findings.

Severity	Kind	Path	Detail	Points
high	Credential file access	package/src/ummaya/safety/_patterns.py	matched ".ssh"	30
high	Credential file access	package/tui/src/utils/autoUpdater.ts	matched ".npmrc"	30
high	Credential file access	package/tui/src/utils/aws.ts	matched ".aws"	30
high	Credential file access	package/tui/src/tools/BashTool/bashPermissions.ts	matched "KUBECONFIG"	30
high	Credential file access	package/tui/src/tools/BashTool/bashSecurity.ts	matched ".ssh"	30
high	Credential file access	package/src/ummaya/llm/_cc_reference/client.ts	matched ".azure"	30
high	Credential file access	package/tui/src/utils/permissions/dangerousPatterns.ts	matched ".ssh"	30
high	Credential file access	package/tui/src/utils/env.ts	matched ".AWS"	30
high	Credential file access	package/tui/src/utils/envUtils.ts	matched ".AWS"	30
high	Credential file access	package/tui/src/utils/plugins/fetchTelemetry.ts	matched ".azure"	30
high	Credential file access	package/tui/src/utils/permissions/filesystem.ts	matched ".ssh"	30
high	Credential file access	package/tui/src/utils/fsOperations.ts	matched ".ssh"	30
high	Credential file access	package/tui/src/utils/ide.ts	matched ".npmrc"	30
high	Credential file access	package/tui/src/utils/plugins/marketplaceManager.ts	matched ".ssh"	30
high	Credential file access	package/tui/src/utils/deepLink/parseDeepLink.ts	matched ".ssh"	30
high	Credential file access	package/tui/src/memdir/paths.ts	matched ".ssh"	30
high	Credential file access	package/tui/src/tools/PowerShellTool/pathValidation.ts	matched ".ssh"	30
high	Credential file access	package/tui/src/utils/permissions/pathValidation.ts	matched ".ssh"	30
high	Credential file access	package/tui/src/tools/PowerShellTool/powershellPermissions.ts	matched ".ssh"	30
high	Credential file access	package/tui/src/tools/WebFetchTool/preapproved.ts	matched ".aws"	30
high	Credential file access	package/tui/src/tools/BashTool/prompt.ts	matched ".ssh"	30
high	Credential file access	package/tui/src/tools/PowerShellTool/readOnlyValidation.ts	matched ".ssh"	30
high	Credential file access	package/tui/src/utils/sandbox/sandbox-adapter.ts	matched ".aws"	30
high	Credential file access	package/tui/src/utils/plugins/schemas.ts	matched ".azure"	30
high	DNS / OAST exfiltration	package/tui/src/utils/hooks/ssrfGuard.ts	matched "dns.lookup"	30
high	Credential file access	package/tui/src/utils/subprocessEnv.ts	matched "GITHUB_TOKEN"	30
high	Credential file access	package/tui/src/memdir/teamMemPaths.ts	matched ".ssh"	30
high	Credential file access	package/tui/src/utils/settings/types.ts	matched ".ssh"	30
high	Credential file access	package/tui/src/components/TrustDialog/utils.ts	matched ".aws"	30
medium	Remote Payload	package/src/ummaya/settings.py	matched "raw.githubusercontent.com"	12

Show all 142 findings (low-signal and informational)

Showing 60 of 142 findings.

Severity	Kind	Path	Detail	Points
high	Credential file access	package/src/ummaya/safety/_patterns.py	matched ".ssh"	30
high	Credential file access	package/tui/src/utils/autoUpdater.ts	matched ".npmrc"	30
high	Credential file access	package/tui/src/utils/aws.ts	matched ".aws"	30
high	Credential file access	package/tui/src/tools/BashTool/bashPermissions.ts	matched "KUBECONFIG"	30
high	Credential file access	package/tui/src/tools/BashTool/bashSecurity.ts	matched ".ssh"	30
high	Credential file access	package/src/ummaya/llm/_cc_reference/client.ts	matched ".azure"	30
high	Credential file access	package/tui/src/utils/permissions/dangerousPatterns.ts	matched ".ssh"	30
high	Credential file access	package/tui/src/utils/env.ts	matched ".AWS"	30
high	Credential file access	package/tui/src/utils/envUtils.ts	matched ".AWS"	30
high	Credential file access	package/tui/src/utils/plugins/fetchTelemetry.ts	matched ".azure"	30
high	Credential file access	package/tui/src/utils/permissions/filesystem.ts	matched ".ssh"	30
high	Credential file access	package/tui/src/utils/fsOperations.ts	matched ".ssh"	30
high	Credential file access	package/tui/src/utils/ide.ts	matched ".npmrc"	30
high	Credential file access	package/tui/src/utils/plugins/marketplaceManager.ts	matched ".ssh"	30
high	Credential file access	package/tui/src/utils/deepLink/parseDeepLink.ts	matched ".ssh"	30
high	Credential file access	package/tui/src/memdir/paths.ts	matched ".ssh"	30
high	Credential file access	package/tui/src/tools/PowerShellTool/pathValidation.ts	matched ".ssh"	30
high	Credential file access	package/tui/src/utils/permissions/pathValidation.ts	matched ".ssh"	30
high	Credential file access	package/tui/src/tools/PowerShellTool/powershellPermissions.ts	matched ".ssh"	30
high	Credential file access	package/tui/src/tools/WebFetchTool/preapproved.ts	matched ".aws"	30
high	Credential file access	package/tui/src/tools/BashTool/prompt.ts	matched ".ssh"	30
high	Credential file access	package/tui/src/tools/PowerShellTool/readOnlyValidation.ts	matched ".ssh"	30
high	Credential file access	package/tui/src/utils/sandbox/sandbox-adapter.ts	matched ".aws"	30
high	Credential file access	package/tui/src/utils/plugins/schemas.ts	matched ".azure"	30
high	DNS / OAST exfiltration	package/tui/src/utils/hooks/ssrfGuard.ts	matched "dns.lookup"	30
high	Credential file access	package/tui/src/utils/subprocessEnv.ts	matched "GITHUB_TOKEN"	30
high	Credential file access	package/tui/src/memdir/teamMemPaths.ts	matched ".ssh"	30
high	Credential file access	package/tui/src/utils/settings/types.ts	matched ".ssh"	30
high	Credential file access	package/tui/src/components/TrustDialog/utils.ts	matched ".aws"	30
medium	Remote Payload	package/src/ummaya/settings.py	matched "raw.githubusercontent.com"	12
medium	Remote Payload	package/src/ummaya/tools/mohw/welfare_eligibility_search.py	matched "curl "	12
medium	Remote Payload	package/tui/src/utils/bash/ast.ts	matched "curl "	12
medium	Remote Payload	package/tui/src/tools/BashTool/bashPermissions.ts	matched "curl "	12
medium	Remote Payload	package/tui/src/tools/BashTool/bashSecurity.ts	matched "curl "	12
medium	Remote Payload	package/tui/src/skills/bundled/batch.ts	matched "curl "	12
medium	Remote Payload	package/src/ummaya/llm/_cc_reference/client.ts	matched "curl "	12
medium	Remote Payload	package/tui/src/utils/bash/commands.ts	matched "curl "	12
medium	Remote Payload	package/tui/src/utils/powershell/dangerousCmdlets.ts	matched "invoke-webrequest"	12
medium	Remote Payload	package/tui/src/utils/permissions/dangerousPatterns.ts	matched "wget "	12
medium	Remote Payload	package/tui/src/utils/plugins/fetchTelemetry.ts	matched "raw.githubusercontent.com"	12
medium	Remote Payload	package/tui/src/tools/shared/gitOperationTracking.ts	matched "curl "	12
medium	Remote Payload	package/tui/src/utils/bash/heredoc.ts	matched "curl "	12
medium	Remote Payload	package/tui/src/commands/init-verifiers.ts	matched "curl "	12
medium	Remote Payload	package/tui/src/utils/plugins/installCounts.ts	matched "raw.githubusercontent.com"	12
medium	Remote Payload	package/tui/src/utils/powershell/parser.ts	matched "Invoke-WebRequest"	12
medium	Remote Payload	package/tui/src/tools/PowerShellTool/pathValidation.ts	matched "Invoke-WebRequest"	12
medium	Remote Payload	package/src/ummaya/llm/_cc_reference/permissions.ts	matched "iwr "	12
medium	Remote Payload	package/tui/src/utils/permissions/permissions.ts	matched "iwr "	12
medium	Remote Payload	package/tui/src/commands/plugin-init.ts	matched "github.com/ummaya-plugin-store/ummaya-plugin-${opts.name}/releases/download"	12
medium	Remote Payload	package/tui/src/tools/PowerShellTool/powershellPermissions.ts	matched "invoke-webrequest"	12
medium	Remote Payload	package/tui/src/utils/shell/powershellProvider.ts	matched "curl "	12
medium	Remote Payload	package/tui/src/tools/PowerShellTool/powershellSecurity.ts	matched "IWR "	12
medium	Remote Payload	package/tui/src/cli/print.ts	matched "cUrl "	12
medium	Remote Payload	package/tui/src/tools/RemoteTriggerTool/prompt.ts	matched "curl "	12
medium	Remote Payload	package/tui/src/utils/releaseNotes.ts	matched "raw.githubusercontent.com"	12
medium	Remote Payload	package/tui/src/tools/BashTool/shouldUseSandbox.ts	matched "curl "	12
low	Obfuscation	package/src/ummaya/safety/_patterns.py	matched "\\uc774"	3
low	Obfuscation	package/src/ummaya/permissions/canonical_json.py	matched "\\u0000"	3
low	Obfuscation	package/src/ummaya/engine/tokens.py	matched "\\uac00"	3
low	Obfuscation	package/src/ummaya/tools/mohw/welfare_eligibility_search.py	matched "\\ufffd"	3

Manifest

Package metadata

Scripts11

diff:upstreambun run scripts/diff-upstream.ts
gen:ipcbun run scripts/gen-ipc-types.ts
gen:pipa-hashbun run scripts/gen-pipa-hash.ts
probe:tool-registrybun src/probes/toolRegistryProbe.tsx
testbun test tests/adr-precheck.test.ts tests/entrypoints tests/hooks tests/i18n tests/ink tests/ipc tests/memdir tests/permissions tests/primitive tests/store tests/theme tests/unit
test:allbun test
test:soakbun test --timeout 600000 tests/soak
tuibun run src/entrypoints/cli.tsx
tui:smokebun run scripts/tui-smoke.ts
typechecktsc --noEmit -p tsconfig.typecheck.json
typecheck:fulltsc --noEmit

Dependencies68

@alcalzone/ansi-tokenize^0.3.0
@anthropic-ai/claude-agent-sdk^0.2.119
@anthropic-ai/mcpb^2.1.2
@anthropic-ai/sandbox-runtime^0.0.49
@anthropic-ai/sdk^0.37.0
@aws-sdk/client-bedrock-runtime^3.1036.0
@commander-js/extra-typings^12.1.0
@growthbook/growthbook^1.6.5
@grpc/grpc-js^1.14.3
@inkjs/ui^2.0.0
@modelcontextprotocol/sdk^1.29.0
@opentelemetry/api^1.9.1
@opentelemetry/api-logs^0.215.0
@opentelemetry/core^2.7.0
@opentelemetry/exporter-logs-otlp-grpc^0.216.0
@opentelemetry/exporter-logs-otlp-http^0.216.0
@opentelemetry/exporter-logs-otlp-proto^0.216.0
@opentelemetry/exporter-metrics-otlp-grpc^0.216.0
@opentelemetry/exporter-metrics-otlp-http^0.216.0
@opentelemetry/exporter-metrics-otlp-proto^0.216.0
@opentelemetry/exporter-trace-otlp-grpc^0.216.0
@opentelemetry/exporter-trace-otlp-http^0.216.0
@opentelemetry/exporter-trace-otlp-proto^0.216.0
@opentelemetry/resources^2.7.0
@opentelemetry/sdk-logs^0.215.0
@opentelemetry/sdk-metrics^2.7.0
@opentelemetry/sdk-trace-base^2.7.0
@opentelemetry/semantic-conventions^1.40.0
@pdf-lib/fontkit^1.1.1
ajv^8.18.0
…and 38 more.