Which versions of prettier-sdk are malicious?

The following npm versions of prettier-sdk are flagged malicious: 1.0.2. Treat any of these as compromised.

How do I remediate prettier-sdk if I installed it?

Remove prettier-sdk from your project and lockfile, then assume any secrets accessible to the build or runtime were exposed: rotate API keys, tokens, and credentials, and audit for unexpected outbound network activity or persistence. Use O3 Security's dependency scanner to confirm the package and its artifacts are fully purged across your stack.

Is prettier-sdk part of a known attack campaign?

Yes — prettier-sdk is associated with the IN-MAL-2026-003206, IN-MAL-2026-003205, GHSA-hwr7-qq29-qrf2 campaign. Packages in the same campaign often share infrastructure and payloads, so check whether any related packages are also in your dependency tree.

Can O3 Security detect prettier-sdk in my codebase?

Yes. O3 Security's supply-chain scanner checks every dependency against known-malicious package intelligence at install time and in CI, blocking prettier-sdk and packages like it before any post-install script runs.

Malicious package

prettier-sdknpm

Malicious code in prettier-sdk (npm) Remove it immediately and rotate any exposed credentials.

MAL-2026-4645

Immediate action

Remove the package, then rotate any secrets the build/runtime could reach.

npm uninstall prettier-sdk

What this malware does

Package name prettier-sdk impersonates the top-tier prettier package (~50M weekly downloads), copying its README verbatim and forging metadata (repository: prettier/prettier, homepage: https://prettier.io, author: James Long). The postinstall script node./plugins/preinstall.js base64-decodes a hardcoded URL stored in a misleadingly-named variable HASH_KEY = "aHR0cHM6Ly9qc29ua2VlcGVyLmNvbS9iLzM2S0VN" (decodes to https://jsonkeeper.com/b/36KEM, an anonymous mutable paste service), HTTP GETs it via axios, and pipes the response body's cookie field to the stdin of a detached node process via spawn('node', [], { detached: true,... }) followed by child.stdin.write(s1); child.unref(). This executes arbitrary attacker-controlled JavaScript on every installer's machine at npm install time, with no integrity check, from a host the attacker can mutate at will. Three independent block signals stack: typosquat-with-malicious-payload against a top-100 package, install-time fetch-and-execute from an anonymous paste host, and base64 obfuscation of the C2 URL.

Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be rotated immediately from a different computer. The package should be removed, but as full control of the computer may have been given to an outside entity, there is no guarantee that removing the package will remove all malicious software resulting from installing it.

Malicious versions

1 flagged

1.0.2

Indicators of compromise (SHA-256)

2233ad0befd0c3dabc3ad0e9bfcc1276925f1dcf2d4fffd686f45c248e830a2d

80a3bdd18c28c0c045aaed2a3e5725b3b38cb45bc9c16d0b795c4334caed17a5

66ee1c7797a2137c9a0306a0fee6d1b4429de29d0f8f6a40c27b5b790b8a08d8

Frequently asked questions

No. prettier-sdk on npm has been identified as a malicious package (version 1.0.2 flagged). It should be removed immediately — do not install or keep it in your dependency tree.

Campaign

IN-MAL-2026-003206IN-MAL-2026-003205GHSA-hwr7-qq29-qrf2

References

Credits

Amazon Inspector · finder

Scan your dependencies

O3 Security blocks malicious packages like this at install time and in CI.

Supply-chain protection