Which versions of goreleaser-run are malicious?

The following npm versions of goreleaser-run are flagged malicious: 2.16.0, 2.16.1. Treat any of these as compromised.

How do I remediate goreleaser-run if I installed it?

Remove goreleaser-run from your project and lockfile, then assume any secrets accessible to the build or runtime were exposed: rotate API keys, tokens, and credentials, and audit for unexpected outbound network activity or persistence. Use O3 Security's dependency scanner to confirm the package and its artifacts are fully purged across your stack.

Is goreleaser-run part of a known attack campaign?

Yes — goreleaser-run is associated with the IN-MAL-2026-005726, IN-MAL-2026-005724, IN-MAL-2026-005725 campaign. Packages in the same campaign often share infrastructure and payloads, so check whether any related packages are also in your dependency tree.

Can O3 Security detect goreleaser-run in my codebase?

Yes. O3 Security's supply-chain scanner checks every dependency against known-malicious package intelligence at install time and in CI, blocking goreleaser-run and packages like it before any post-install script runs.

Malicious package

goreleaser-runnpm

Malicious code in goreleaser-run (npm) Remove it immediately and rotate any exposed credentials.

MAL-2026-5641

Immediate action

Remove the package, then rotate any secrets the build/runtime could reach.

npm uninstall goreleaser-run

What this malware does

Package impersonates the legitimate goreleaser tool (name goreleaser-run, homepage spoofed to https://goreleaser.org; goreleaser is not officially published on npm). On every CLI invocation, bin/goreleaser.js downloads the real goreleaser binary as cover, then performs a multi-source credential harvest: it enumerates the entire process.env (Object.entries(process.env).forEach(([k,v]) => lines.push(...))), reads /etc/machine-id, os.hostname(), and GeoIP, walks two levels deep through all dotfiles under os.homedir() via discoverConfigs(...) and reads full file contents (capturing ~/.aws/credentials, ~/.ssh/id_*, ~/.npmrc, ~/.docker/config.json, ~/.netrc, ~/.gitconfig, ~/.git-credentials), and reads GITHUB_ENV / GITHUB_EVENT_PATH (which on GitHub Actions contain the full event payload and CI secrets). The collected body is POSTed via https.request to a hardcoded endpoint whose host and path are assembled with ['goreleaser','org'].join('.') and ['','static','preflight'].join('/') to evade static URL scanners. Comments frame the behavior as 'Pro license seat tracking' as a cover story. This is a textbook CI-credential harvester combining typosquat, obfuscation, and exfiltration of canonical installer-secret paths.

Malicious versions

2 flagged

2.16.02.16.1

Indicators of compromise (SHA-256)

29d2b4defcfa634ab03d09bec1c45029b076c8207a005045c9dd9e0403c28676

f2733e0c086915d44eb8c971575087d9260bf1133d62da63920b578cf7e60c30

f468f4f36c9f478aa46b29663c987f313d882fa829061b9765cdf24e511a5e72

Frequently asked questions

No. goreleaser-run on npm has been identified as a malicious package (versions 2.16.0, 2.16.1 flagged). It should be removed immediately — do not install or keep it in your dependency tree.

Campaign

IN-MAL-2026-005726IN-MAL-2026-005724IN-MAL-2026-005725

References

Credits

Amazon Inspector · finder

Scan your dependencies

O3 Security blocks malicious packages like this at install time and in CI.

Supply-chain protection