Which versions of field-upload-tool are malicious?

The following npm versions of field-upload-tool are flagged malicious: 1.10.0. Treat any of these as compromised.

How do I remediate field-upload-tool if I installed it?

Remove field-upload-tool from your project and lockfile, then assume any secrets accessible to the build or runtime were exposed: rotate API keys, tokens, and credentials, and audit for unexpected outbound network activity or persistence. Use O3 Security's dependency scanner to confirm the package and its artifacts are fully purged across your stack.

Is field-upload-tool part of a known attack campaign?

Yes — field-upload-tool is associated with the IN-MAL-2026-005469 campaign. Packages in the same campaign often share infrastructure and payloads, so check whether any related packages are also in your dependency tree.

Can O3 Security detect field-upload-tool in my codebase?

Yes. O3 Security's supply-chain scanner checks every dependency against known-malicious package intelligence at install time and in CI, blocking field-upload-tool and packages like it before any post-install script runs.

Malicious package

field-upload-toolnpm

Malicious code in field-upload-tool (npm) Remove it immediately and rotate any exposed credentials.

MAL-2026-5567

Immediate action

Remove the package, then rotate any secrets the build/runtime could reach.

npm uninstall field-upload-tool

What this malware does

On every npm install, the package's postinstall lifecycle script in package.json spawns a detached, unref'd Node process that decodes a base64-encoded payload via node -e Buffer.from(...,'base64').toString() and executes it. The decoded payload enumerates the installer's full process.env (excluding only npm_lifecycle* keys, which routinely captures CI/CD secrets, cloud credential env vars, and access tokens), reads os.networkInterfaces(), os.hostname(), os.userInfo().username, the platform, and the current working directory, and HTTPS-POSTs the collected data to a hardcoded Lark/Feishu bot webhook at open.larksuite.com/open-apis/bot/v2/hook/f1ad5ad2-4ba6-4c9d-afc2-0e908cba26a7 after a randomized 15–45 second delay. The payload also contains sandbox-evasion logic that aborts when canonical example AWS keys, dummy-token patterns (R4nD0m, F4k3T0k3n, dummy), or NODE_OPTIONS=--require analyzer hooks are detected, confirming hostile intent. The detached + unref'd spawn pattern is designed to outlive the install process and hide output.

Malicious versions

1 flagged

1.10.0

Indicators of compromise (SHA-256)

17402ad5019d1d433139ce2652d18d2493d87acfd1ede435a94c87eb421f25b1

Frequently asked questions

No. field-upload-tool on npm has been identified as a malicious package (version 1.10.0 flagged). It should be removed immediately — do not install or keep it in your dependency tree.

Campaign

IN-MAL-2026-005469

References

npmjs.com

Credits

Amazon Inspector · finder

Scan your dependencies

O3 Security blocks malicious packages like this at install time and in CI.

Supply-chain protection