# @shoulderdev/malware-demo@0.0.1 — Threat Briefing

Critical risk — threat briefing for npm package @shoulderdev/malware-demo@0.0.1. Capabilities, risk paths, and what to check.

- **Ecosystem:** npm
- **Latest version:** 0.0.1
- **License:** MIT

## Risk

- **Level:** critical
- **Summary:** Install hook + shell exec + obfuscation — known malware shape (scopes may be install or runtime)

## Capability Summary

| Capability | Level |
|---|---|
| install scripts | Postinstall, Preinstall |
| network access | none |
| filesystem | read |
| shell execution | exec |

## Capabilities

### Other

- Credential-shaped environment variable read [common]
- Code obfuscation indicators [common]

### Environment

- Environment variable access [common]

### Install Scripts

- Install-time script execution [common]

### Execution

- Shell execution [suspicious]

### System

- OS information gathering [common]

## Key Signals

- ****
- ****
- ****
- ****
- ****

## Maintainer


## Recommended Action

Do not install. Review immediately if already in use.