—

MAL-2026-5485

Malicious code in mcp-server-supabase (npm)

Details

--- _-= Per source details. Do not edit below this line.=-_

## Source: amazon-inspector (fdd7519780160ab3a92639d54eab0a62f08b3d435e61276f4ba599c638c3cd40) Package name impersonates the official scoped Supabase MCP server. package.json declares "postinstall": "node index.js", which fires automatically on npm install and unconditionally POSTs installer metadata — os.hostname(), process.cwd(), process.env.npm_config_user_agent, Node version, and os.platform() — to a hardcoded Cloudflare Workers endpoint at https://npx-canary-log.vulnerable-live.workers.dev/log. The package ships no functionality consumers requested; its entire on-install effect is the outbound beacon. Installers resolved to this unscoped name get their hostname and working-directory path silently transmitted to third-party infrastructure without consent.

Are you affected?

Enter the version of the package you're using.

Affected packages

npm / mcp-server-supabase

No fixed version published yet for mcp-server-supabase (npm). Pin to a known-safe version or switch to an alternative.

References

https://www.npmjs.com/package/mcp-server-supabase/v/0.0.1 [PACKAGE]