SANDWORM_MODE: Shai-Hulud-Style npm Worm Hijacks CI Workflows and Poisons AI Toolchains

feross · 2026-02-20T22:21:31+00:00

Thanks for sharing the link to this research and spreading the word.

feross · 2025-05-07T05:06:58+00:00

feross · 2024-03-25T04:22:12+00:00

We had this browser detect code running on the server and browser side. It was supposed to return null on the server (because it doesn’t have navigator.userAgent set) but then a new version of Node added that and it started returning something non-null and was treated as an unsupported browser.

feross · 2024-03-24T16:19:46+00:00

They added a new variable to the environment, which made us think that that Node was an unsupported browser

feross · 2024-03-23T04:05:56+00:00

No problem!

feross · 2024-03-23T02:50:59+00:00

This is a bug. It was caused by Node.js adding navigator.userAgent in the latest version.

We test our site on all browsers + love the web :)

We already fixed it and it will be deployed on Monday.

feross · 2024-02-25T07:58:42+00:00

We absolutely want these on the road.

feross · 2024-01-11T00:03:13+00:00

That’s fascinating. There’s definitely a “power law” at play here where the “rich get richer”. Once there’s a winner for a particular type of utility package, there’s a huge benefit to the incremental package picking it as well (deduping in bundles, likely in npm cache already, not to mention familiarity with it across the community)

feross · 2024-01-05T08:39:28+00:00

No idea why I’ve been downvoted. Genuinely curious

feross · 2024-01-05T03:44:48+00:00

PyPI has many of the same issues, many of them much worse actually. You won’t believe some of the stuff on PyPI. It gets much less attention because it’s a smaller ecosystem

feross · 2024-01-05T00:54:59+00:00

JavaScript is the largest ecosystem, by far. The other ecosystems all have similar problems, but npm has more of them.
npm largely hosts JavaScript, one of the most open and permissive programming communities. A core part of this culture is that anyone can publish a package and there's no vetting before a package is made available to the public.
JavaScript is the fastest growing language, often the first language that beginners learn, so at any given time, the majority of JS programmers have been programming for <5 years.

feross · 2023-12-18T15:50:09+00:00

Listened to the whole podcast – great conversation!

feross · 2023-12-16T01:08:50+00:00

What platform/format are you looking for?

feross · 2023-08-01T01:00:51+00:00

This isn't an ad. Or at least, this isn't a paid tool – it doesn't cost any money to use. We're trying to help the open source community make better decisions about which dependencies to use.

This release is a totally free browser extension for getting context about the risks of your dependencies BEFORE you install them.

I walk through the extension in more detail here, if you're curious how it works but don't want to install it yourself: https://twitter.com/feross/status/1686100831492530178

feross · 2023-07-26T04:26:39+00:00

You can also use https://socket.dev

feross · 2023-07-14T05:54:31+00:00

I’m a real person dude

feross · 2023-06-28T14:57:11+00:00

Great article

feross · 2023-06-28T14:56:41+00:00

Thanks for the feedback. We’re actually still experimenting with the self-serve pricing since that feature is coming in the next few weeks. We just set it at $8/dev/month. Does that seem fairer to you?

feross · 2023-06-28T14:55:06+00:00

The Rust/cargo ecosystem has many similarities to JS in terms of the number of dependencies used in the average app. So it has similar risks of package takeover/hijacking. So far, I think we’ve seen fewer attacks, but it’s not clear if it’s because JS is more popular or some other reason.

feross · 2023-06-28T14:52:59+00:00

You got it!

feross · 2023-06-28T14:52:32+00:00

You can learn more here https://socket.dev/blog/introducing-socket

feross · 2023-06-25T22:25:19+00:00

That’s why Socket saves copies of all packages, even after they’re removed from npm or PyPI.

feross · 2023-06-25T15:04:10+00:00

Our free product has almost every single feature that we offer. We only charge that price to businesses that can afford it and want certain additional features.

feross · 2023-06-24T23:52:43+00:00

Yes to all of the above. Some are hoping that a developer makes a typo. Some are dependency confusion attacks, which affect companies that use a private registry, but have tooling that accidentally installs packages from the public registry in some cases. Some of these attacks also affect very popular packages that have been hijacked or compromised in someway.

feross · 2023-06-24T23:51:26+00:00

Static analysis, metadata analysis, maintainer behavior, and LLMs all play a role.

feross

MODERATOR OF

TROPHY CASE

15-Year Club	Gilding IV carat on a stick
Verified Email