Which versions of oem-agentic-shared are malicious?

The following npm versions of oem-agentic-shared are flagged malicious: 99.9.1. Treat any of these as compromised.

How do I remediate oem-agentic-shared if I installed it?

Remove oem-agentic-shared from your project and lockfile, then assume any secrets accessible to the build or runtime were exposed: rotate API keys, tokens, and credentials, and audit for unexpected outbound network activity or persistence. Use O3 Security's dependency scanner to confirm the package and its artifacts are fully purged across your stack.

Is oem-agentic-shared part of a known attack campaign?

Yes — oem-agentic-shared is associated with the IN-MAL-2026-006964 campaign. Packages in the same campaign often share infrastructure and payloads, so check whether any related packages are also in your dependency tree.

Can O3 Security detect oem-agentic-shared in my codebase?

Yes. O3 Security's supply-chain scanner checks every dependency against known-malicious package intelligence at install time and in CI, blocking oem-agentic-shared and packages like it before any post-install script runs.

Malicious package

oem-agentic-sharednpm

Malicious code in oem-agentic-shared (npm) Remove it immediately and rotate any exposed credentials.

MAL-2026-6095

Immediate action

Remove the package, then rotate any secrets the build/runtime could reach.

npm uninstall oem-agentic-shared

What this malware does

[email protected] is a hollow stub: index.js exports an empty object and package.json has empty author, empty description, and no real functionality. Its sole effect on install is to pull in a single dependency declared as a direct HTTPS tarball URL — ltidisafe pinned to https://ltidi.storage.googleapis.com/depenconf/ltidisafe-3.0.9.tgz — instead of an npm-registry version. The Google Cloud Storage bucket is not associated with this package's name and is not a known publisher CDN, so the tarball contents bypass npm-registry scanning entirely and any lifecycle scripts inside that tarball execute on npm install. The wrapper-plus-off-registry-tarball shape is a known smuggling pattern whose only purpose is to inject attacker-controlled, unscanned code into the installer's dependency graph.

Malicious versions

1 flagged

99.9.1

Indicators of compromise (SHA-256)

f612eb2fa947323c936a0bb1becc602f0f837f9023edac22a945470566386a8c

Frequently asked questions

No. oem-agentic-shared on npm has been identified as a malicious package (version 99.9.1 flagged). It should be removed immediately — do not install or keep it in your dependency tree.

Campaign

IN-MAL-2026-006964

References

npmjs.com

Credits

Amazon Inspector · finder

Scan your dependencies

O3 Security blocks malicious packages like this at install time and in CI.

Supply-chain protection