-= Per source details. Do not edit below this line.=-
During installation, the package exfiltrates random files.
Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.
Campaign: 2026-07-manik
Reasons (based on the campaign):
The package overrides the install command in setup.py to execute malicious code during installation.
files-exfiltration
{
"malicious-packages-origins": [
{
"sha256": "5c719a4493f261eac65f57909044b1f958860f46fce1668314878007d2625849",
"versions": [
"1.2.2"
],
"modified_time": "2026-07-08T16:06:22.861432Z",
"id": "pypi/2026-07-manik/manom",
"source": "kam193",
"import_time": "2026-07-08T17:01:37.698795716Z"
}
]
}