registry  /  px8my  /  1.0.53

px8my@1.0.53

AI Security Review

scanned 3h ago · by lpm-firewall-ai

Importing `px.js` in a browser immediately hijacks the visible page with a full-screen remote iframe. The external content is remotely controlled by the package operator and can present arbitrary UI to the host page's users.

Static reason
No blocking static signals were detected.
Trigger
Browser import or direct inclusion of `px.js`.
Impact
Host-page UI takeover and potential phishing or deceptive remote content delivery.
Mechanism
Immediate DOM overlay and remote iframe loading.
Attack narrative
The package's main file runs at import time, masks the document, changes its title, and places a highest-z-index iframe over the full viewport. It then loads a package-operator-controlled external URL, allowing remote content to replace the host application's visible interface without a user action beyond inclusion of the package.
Rationale
Source inspection confirms a concrete browser UI-hijacking and remotely controlled content-delivery chain. Although it has no install hook or local credential theft, the behavior is not consistent with a benign npm library.
Evidence
package.jsonpx.jsupdate_px8my.sh
Network endpoints2
mfmz.untfwb.cn/H.html?c=0gjrpurge.jsdelivr.net/npm/px8my/px.js

Decision evidence

public snapshot
AI called this Malicious at 97.0% confidence as Malware with low false-positive risk.
Evidence for block
  • `px.js` executes immediately on browser import.
  • `px.js` creates a full-screen, topmost iframe over the host page.
  • `px.js` loads `https://mfmz.untfwb.cn/H.html?c=0gjr` into that iframe.
  • `px.js` replaces the page title and shows a loading overlay before remote content.
  • `update_px8my.sh` is a maintainer helper that rotates the remote domain and publishes updates.
Evidence against
  • `package.json` has no preinstall, install, postinstall, or prepare hook.
  • No source reads credentials, environment variables, local files, or child processes at runtime.
  • No package code writes persistence or AI-agent configuration.
Behavioral surface
SourceNo risky source behavior triggered.
Supply chain
HighEntropyStringsMinifiedTrivial
ManifestNo manifest risk signals triggered.
scanned 1 file(s), 1.50 KB of source

Source & flagged code

1 flagged · loading source
update_px8my.shView file
path = update_px8my.sh kind = build_helper sizeBytes = 1400 magicHex = [redacted]
Medium
Ships Build Helper

Package ships non-JavaScript build or shell helper files.

update_px8my.shView on unpkg

Findings

1 Medium2 Low
MediumShips Build Helperupdate_px8my.sh
LowScripts Present
LowHigh Entropy Strings