Which versions of @limebike/supreme are malicious?

The following npm versions of @limebike/supreme are flagged malicious: 85.14.44, 85.14.46. Treat any of these as compromised.

How do I remediate @limebike/supreme if I installed it?

@limebike/supreme is built to steal secrets, so assume every credential the build or runtime could read is compromised. Remove it from your project and lockfile, then rotate ALL exposed secrets — npm/registry tokens, cloud keys, CI/CD secrets, SSH keys, and any .env values — from a known-clean machine. Audit logs for unauthorized use of those credentials.

I already installed @limebike/supreme — how do I know if it already compromised me?

If @limebike/supreme was ever installed, its post-install/runtime payload may have already executed. O3's L7 egress monitoring and runtime eBPF sensors detect the credential exfiltration or command-and-control callback after install and block the malicious outbound channel, so you catch and contain the actual compromise — not just the presence of the package.

Is @limebike/supreme part of a known attack campaign?

Yes — @limebike/supreme is associated with the GHSA-9x95-pwr5-8g32, IN-MAL-2026-003533, IN-MAL-2026-003549, IN-MAL-2026-003550, IN-MAL-2026-003532 campaign. Packages in the same campaign often share infrastructure and payloads, so check whether any related packages are also in your dependency tree.

How do I find @limebike/supreme across my projects, lockfiles, and CI pipelines?

Scan your lockfiles (package-lock.json, pnpm-lock.yaml, yarn.lock, requirements.txt, poetry.lock, etc.) and build artifacts for @limebike/supreme (2 malicious versions). O3 Security's supply-chain scanner checks every dependency against known-malicious package intelligence at install time and in CI, flagging @limebike/supreme across your stack and pipelines.

Malicious package

@limebike/supremenpm

Malicious code in @limebike/supreme (npm) Remove it immediately and rotate any exposed credentials.

MAL-2026-4188

Immediate action

Remove the package, then rotate any secrets the build/runtime could reach.

npm uninstall @limebike/supreme

What this malware does

Both preinstall and postinstall lifecycle hooks in package.json execute index.js, which collects the installer's hostname, non-internal network interface IPs, current working directory, package name, and the value of the SECURITY_BUG_BOUNTY_DOCTOLIB_IS_PWN environment variable, and POSTs the JSON payload to http://poc.khz.bar/install over plain HTTP. This fires automatically on npm install without any user action. The package name @limebike/supreme combined with the bug-bounty-themed environment-variable name and exfil host suggests a dependency-confusion proof-of-concept targeting an internal scope, but the structural behavior — unconditional install-time beacon of installer identity to a third-party host over cleartext HTTP — is identical to a supply-chain exfiltration attack and produces a tangible signal for the operator of poc.khz.bar identifying every machine that installed the package.

Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be rotated immediately from a different computer. The package should be removed, but as full control of the computer may have been given to an outside entity, there is no guarantee that removing the package will remove all malicious software resulting from installing it.

Malicious versions

2 flagged

85.14.4485.14.46

Indicators of compromise (SHA-256)

5cae8c5e6d35571409c86e7b77a3fe40d1bb1c763ce736029375f41628e11d71

975c8c2d640913450f35edef428d4de749504a07a74718085d39bce96a67cea4

ba1e295ee15f50f31d22dbabb954522f38aaaa080b74f0db50cd298787d8d58a

ba8eb092bfb98e7fd0c2f662a6a379ead766017d219d7ab60a7ebdbc0def8299

4f65cdcb27200e24464982c0678d9dd556342d53886e4d5378da5d9c664fe1c7

Detection & response playbook

Credential / info stealer

Find it
Scan your lockfiles (package-lock.json, pnpm-lock.yaml, yarn.lock, requirements.txt, poetry.lock, etc.) and build artifacts for @limebike/supreme (2 malicious versions). O3 Security's supply-chain scanner checks every dependency against known-malicious package intelligence at install time and in CI, flagging @limebike/supreme across your stack and pipelines.
If you installed it — respond
@limebike/supreme is built to steal secrets, so assume every credential the build or runtime could read is compromised. Remove it from your project and lockfile, then rotate ALL exposed secrets — npm/registry tokens, cloud keys, CI/CD secrets, SSH keys, and any .env values — from a known-clean machine. Audit logs for unauthorized use of those credentials.
Did it already run?
If @limebike/supreme was ever installed, its post-install/runtime payload may have already executed. O3's L7 egress monitoring and runtime eBPF sensors detect the credential exfiltration or command-and-control callback after install and block the malicious outbound channel, so you catch and contain the actual compromise — not just the presence of the package.
How O3 protects you
O3 blocks @limebike/supreme before install through its supply-chain scanner, and if it has already run, detects and severs the exfiltration or C2 callback at runtime through L7 egress monitoring and eBPF.

Frequently asked questions

No. @limebike/supreme on npm has been identified as a malicious package (versions 85.14.44, 85.14.46 flagged). It should be removed immediately — do not install or keep it in your dependency tree.

Campaign

GHSA-9x95-pwr5-8g32IN-MAL-2026-003533IN-MAL-2026-003549IN-MAL-2026-003550IN-MAL-2026-003532

References

Credits

Amazon Inspector · finder

Detect & block this

O3 blocks @limebike/supreme-class packages before install and in CI — and if it already ran, its runtime egress monitoring catches the credential exfiltration and severs the channel.

Malware detection Runtime egress monitoring