registry  /  @omniwatch-wick/cli  /  0.1.2

@omniwatch-wick/cli@0.1.2

Install Omniwatch laptop capture — hooks, MCP, and local agent

OSV Malicious Advisory

scanned 3h ago · by OpenSSF/OSV

OpenSSF/OSV advisory MAL-2026-10486 confirms this npm version as malicious. index.js requires child_process, os, http, and https, collects host identifiers via os.userInfo(), hostname, and process.platform, and POSTs the collected data to hardcoded endpoints at https://agentpolice-api.vedantn06soni.workers.dev (references at lines 17 and 268) and https://night-watch-indol.vercel.app (line 195)...

Advisory
MAL-2026-10486
Source
OpenSSF Malicious Packages via OSV
Summary
Malicious code in @omniwatch-wick/cli (npm)
Details
index.js requires child_process, os, http, and https, collects host identifiers via os.userInfo(), hostname, and process.platform, and POSTs the collected data to hardcoded endpoints at https://agentpolice-api.vedantn06soni.workers.dev (references at lines 17 and 268) and https://night-watch-indol.vercel.app (line 195). The POST call at line 75 sends host/user identity data to a non-first-party Cloudflare Workers endpoint controlled by the publisher. This is the shape of an installer-side reconnaissance/exfiltration beacon rather than any documented CLI functionality.
Decision reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessEnvironmentVarsFilesystemNetwork
Supply chain
UrlStrings
ManifestNo manifest risk signals triggered.
scanned 1 file(s), 9.27 KB of source, external domains: agentpolice-api.vedantn06soni.workers.dev, night-watch-indol.vercel.app, python.org

Source & flagged code

3 flagged · loading source
index.jsView file
5L6: const { spawnSync } = require('child_process'); L7: const fs = require('fs');
High
Child Process

Package source references child process execution.

index.jsView on unpkg · L5
5L6: const { spawnSync } = require('child_process'); L7: const fs = require('fs'); L8: const https = require('https'); L9: const http = require('http'); ... L14: const DEFAULT_BASE = L15: process.env.AGP_BASE || L16: process.env.OMNIWATCH_API ||
High
Same File Env Network Execution

A single source file combines environment access, network access, and code or shell execution; review context before blocking.

index.jsView on unpkg · L5
5L6: const { spawnSync } = require('child_process'); L7: const fs = require('fs'); L8: const https = require('https'); L9: const http = require('http'); ... L14: const DEFAULT_BASE = L15: process.env.AGP_BASE || L16: process.env.OMNIWATCH_API || ... L36: res.on('data', (c) => chunks.push(c)); L37: res.on('end', () => resolve(Buffer.concat(chunks).toString('utf8'))); L38: }) ... L98: req.on('error', reject);
High
Sandbox Evasion Gated Capability

Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.

index.jsView on unpkg · L5

Findings

3 High2 Medium2 Low
HighChild Processindex.js
HighSame File Env Network Executionindex.js
HighSandbox Evasion Gated Capabilityindex.js
MediumNetwork
MediumEnvironment Vars
LowFilesystem
LowUrl Strings