registry  /  px8my  /  1.0.49

px8my@1.0.49

AI Security Review

scanned 2h ago · by lpm-firewall-ai

Importing/loading the package entrypoint replaces the visible page with a full-screen remote iframe. The remote destination can supply arbitrary web content independently of the published package.

Static reason
No blocking static signals were detected.
Trigger
A browser loads or imports `px.js` as the package entrypoint.
Impact
Users of a consuming page are redirected behind an overlay to attacker-controlled remote content.
Mechanism
Immediate DOM takeover and remote iframe payload loading.
Attack narrative
The declared package entrypoint immediately waits for DOM readiness, then overlays the entire page and loads an external URL in a highest-z-index iframe. The bundled publisher helper is designed to replace that destination domain, publish a new version, and purge the CDN, enabling rapid remote redirect rotation. This is a concrete remote-content delivery chain rather than a legitimate npm library function.
Rationale
The package provides no library behavior; its import-time browser payload covertly embeds an externally controlled destination. The domain-rotation publishing helper reinforces intentional remote payload delivery.
Evidence
package.jsonpx.jsupdate_px8my.sh
Network endpoints2
mfmz.cbrexpo.cn/H.html?c=0gjrpurge.jsdelivr.net/npm/px8my/px.js

Decision evidence

public snapshot
AI called this Malicious at 98.0% confidence as Malware with low false-positive risk.
Evidence for block
  • `px.js` is the declared `main` entrypoint and executes immediately in a browser context.
  • `px.js` creates a topmost full-screen iframe targeting `https://mfmz.cbrexpo.cn/H.html?c=0gjr`.
  • The iframe hides the host page and runs remotely supplied content after import/load.
  • `update_px8my.sh` rotates the redirect domain, publishes a new package version, and purges the CDN copy.
Evidence against
  • `package.json` has no `preinstall`, `install`, or `postinstall` lifecycle hook.
  • No credential harvesting, local file access, shell execution, or AI-agent configuration mutation appears in the package source.
Behavioral surface
SourceNo risky source behavior triggered.
Supply chain
HighEntropyStringsMinifiedTrivial
ManifestNo manifest risk signals triggered.
scanned 1 file(s), 1.50 KB of source

Source & flagged code

1 flagged · loading source
update_px8my.shView file
path = update_px8my.sh kind = build_helper sizeBytes = 1400 magicHex = [redacted]
Medium
Ships Build Helper

Package ships non-JavaScript build or shell helper files.

update_px8my.shView on unpkg

Findings

1 Medium2 Low
MediumShips Build Helperupdate_px8my.sh
LowScripts Present
LowHigh Entropy Strings