Which versions of chai-utils-test are malicious?

The following npm versions of chai-utils-test are flagged malicious: 4.5.0, 4.5.1, 4.5.2, 4.5.3, 4.5.4, 4.5.5. Treat any of these as compromised.

How do I remediate chai-utils-test if I installed it?

Remove chai-utils-test from your project and lockfile, then assume any secrets accessible to the build or runtime were exposed: rotate API keys, tokens, and credentials, and audit for unexpected outbound network activity or persistence. Use O3 Security's dependency scanner to confirm the package and its artifacts are fully purged across your stack.

Can O3 Security detect chai-utils-test in my codebase?

Yes. O3 Security's supply-chain scanner checks every dependency against known-malicious package intelligence at install time and in CI, blocking chai-utils-test and packages like it before any post-install script runs.

Malicious package

chai-utils-testnpm

Malicious code in chai-utils-test (npm) Remove it immediately and rotate any exposed credentials.

MAL-2026-5748

Immediate action

Remove the package, then rotate any secrets the build/runtime could reach.

npm uninstall chai-utils-test

What this malware does

Package name 'chai-utils-test' impersonates the popular 'chai' assertion library and ships a cloned chai source tree. The declared main (index.js) calls a top-level launcher that spawns node lib/chai/utils/assertion.js as a detached child process with stdio:'ignore' and child.unref(), so the dropper survives the parent and produces no visible output. The child uses axios to GET https://statecheck.ddns.net/api/scanner.js (a dynamic-DNS host) with a base64-encoded key=YWRtaW46c2VjcmV0MTIz query parameter (likely a server-side gate for staged payload delivery), then runs the response body via new Function('require', s)(require) — granting the attacker-served code full Node require() access. The package also pre-installs a global.atob polyfill backed by Buffer.from(x,'base64').toString('utf8') in preparation for the fetched payload. Net effect: any developer or CI job that requires/imports this package executes attacker-controlled code from a mutable remote endpoint with full Node privileges.

Malicious versions

6 flagged

4.5.04.5.14.5.24.5.34.5.44.5.5

Indicators of compromise (SHA-256)

18fced2e0d10d37dc3ca5a984ff8d36af0b1fb115b05a4a5378e2e5b42597332

93585e9331720cf1478c8e7b95cf9ff62f512b41d3e7d3caf323bd9e16a97aeb

ff4ec29ec510f5f0e3b662983bffec70d14d70c058493edfc2c7def8e0e6829a

2e1bdccf3a79722f18b4d6a1d48b8fc3331ebe7b4a394d3012a19d6c3455fbb8

64edd573a9e5fdef8dcde78f5b0c9fa00521f232b886be838104741d1e0535f7

c724301f7d4afa2a50e7ee6e6b500b2a7392ce13c895f03ab9206ea471636805

dca0b5258c13cba7ee0158286c3f7118c1b44f98657b1001878e9df190443ef7

fa34e73468624d4f80385acb5835a40410dde2339c1d41d6ab2ef32737aad941

1bb5e339775a0025b7b7a3efbadd6cdcb73c30ad3eca45d8f55fc55e533cf72a

4a37c97f62e1bde737d809c7727dc50bf52215caa7bb637e0d027a32fb2dbee0

6f0b254e6f88070926286a7daf4047309991498afa8b3b9ccd820673fff67619

8a46079174a90c2bb08586bcc66d2fc6f7ea6d71bb6385d1f623272b7df9fe16

Frequently asked questions

No. chai-utils-test on npm has been identified as a malicious package (versions 4.5.0, 4.5.1, 4.5.2, 4.5.3, 4.5.4, 4.5.5 flagged). It should be removed immediately — do not install or keep it in your dependency tree.

Campaign

IN-MAL-2026-006383IN-MAL-2026-006389IN-MAL-2026-006393IN-MAL-2026-006386IN-MAL-2026-006391IN-MAL-2026-006382IN-MAL-2026-006388IN-MAL-2026-006387IN-MAL-2026-006385IN-MAL-2026-006384IN-MAL-2026-006390IN-MAL-2026-006392

References

Credits

Amazon Inspector · finder

Scan your dependencies

O3 Security blocks malicious packages like this at install time and in CI.

Supply-chain protection