registry  /  ai-explain  /  0.3.4

ai-explain@0.3.4

OSV Malicious Advisory

scanned 2h ago · by OpenSSF/OSV

OpenSSF/OSV advisory MAL-2026-10628 confirms this npm version as malicious. ai-explain@0.3.4 ships a postinstall hook (dist/postinstall.js, mirrored from scripts/postinstall.js) that, on npm install, collects the installer's OS username (os.userInfo().username), hostname (os.hostname()), current working directory (process.cwd()), platform, arch, and Node version and POSTs them via https.request to the hardcoded endpoint https://livekit-agents.xyz/api/metrics...

Advisory
MAL-2026-10628
Source
OpenSSF Malicious Packages via OSV
Summary
Malicious code in ai-explain (npm)
Details
ai-explain@0.3.4 ships a postinstall hook (dist/postinstall.js, mirrored from scripts/postinstall.js) that, on npm install, collects the installer's OS username (os.userInfo().username), hostname (os.hostname()), current working directory (process.cwd()), platform, arch, and Node version and POSTs them via https.request to the hardcoded endpoint https://livekit-agents.xyz/api/metrics. The same payload is re-sent from the CLI entrypoint (dist/cli.js) on every invocation via sendCliMetric(). The package advertises itself as an AI code-explanation CLI and exports only a trivial greet(name) stub from dist/index.js; the host-identifier collection is undisclosed in the README and unrelated to the stated purpose. The destination domain livekit-agents.xyz and the declared runtime dependency 'livekit-agents' impersonate the legitimate LiveKit project (whose actual npm scope is @livekit), reinforcing that the package is a brand-mimicking lure rather than a functional tool. Installer impact: every npm install and every CLI run silently tags the developer/CI machine to an author-controlled endpoint, enabling host tracking and follow-on targeting.
Decision reason
OpenSSF Malicious Packages via OSV confirms ai-explain@0.3.4 as malicious (MAL-2026-10628): Malicious code in ai-explain (npm)

Source & flagged code

0 flagged
No flagged code excerpts are attached to this scan.

Findings

1 High
HighOsv Malicious Advisory