Malicious code in amzn_codewhisperer_streaming_client (crates.io)
The Rust crate amzn-codewhisperer-streaming-client version 99.0.1 on crates.io was identified as malicious by the OpenSSF Package Analysis project. The package communicates with domains associated with malicious activity and executes commands consistent with malicious behavior.
- Disclosed
- Last updated
- Blast radius
- All users of amzn-codewhisperer-streaming-client version 99.0.1 from crates.io
- Ecosystems
- Attack vectors
- Affected entities
- amzn-codewhisperer-streaming-client · 99.0.1
The OpenSSF Package Analysis project identified version 99.0.1 of the Rust crate 'amzn-codewhisperer-streaming-client' published on crates.io as containing malicious code. The analysis determined the package exhibits two key indicators of compromise: communication with a domain associated with malicious activity and execution of commands consistent with malicious behavior.\n\nThis appears to be a typosquatting or account compromise incident targeting the legitimate AWS CodeWhisperer streaming client library. The malicious version was published to the public crates.io registry, potentially exposing any developer who installed this specific version to compromise.\n\nThe incident was identified and reported through the OpenSSF's malicious package detection program, which maintains a public catalog of confirmed malicious packages across package ecosystems.
Indicators of compromise
- Packages
- amzn-codewhisperer-streaming-client@99.0.1
Remediation
- Immediately remove amzn-codewhisperer-streaming-client version 99.0.1 from any projects or environments where it was installed
- Audit build logs and runtime behavior for any systems that may have executed this package
- Update to a legitimate version of the amzn-codewhisperer-streaming-client from the official AWS repository or verify the package source
- Review crates.io for the legitimate package name and maintainer to ensure future installations use the correct source
- Monitor systems for indicators of compromise such as unexpected network connections or command execution
Sources
- GitHub Advisory GHSA-92vh-m3v8-jv6h · GitHub Advisory Database
Cite this entry
"Malicious code in amzn_codewhisperer_streaming_client (crates.io)." supplychainattack.org, Supply Chain Attack Incident Catalog. Disclosed July 18, 2026; last updated July 18, 2026. https://supplychainattack.org/incident/malicious-code-in-amzn-codewhisperer-streaming-client-crates-io-4k60y0
Suggest a correction
Found an error or have a newer source? Corrections to factual errors take priority over new entries.
Related incidents
- containedcritical
Malicious code in proton_pfff (crates.io)
The Rust crate proton-pfff version 99.99.5 on crates.io was identified as malicious by the OpenSSF Package Analysis project. The package communicates with domains associated with malicious activity and executes commands consistent with malicious behavior.
CargoCompromised package - containedcritical
Malicious code in mysten_metrics (crates.io)
The Rust crate mysten-metrics version 9.0.3 on crates.io was identified as malicious by the OpenSSF Package Analysis project. The package executes commands associated with malicious behavior.
CargoCompromised package - resolvedcritical
Malicious code in littest (crates.io)
The Rust crate 'littest' version 0.3.1 on crates.io was identified as malicious by the OpenSSF Package Analysis project. The package communicates with a domain associated with malicious activity.
CargoCompromised package - containedcritical
Malicious code in amzn_consolas_client (crates.io)
The Rust crate amzn-consolas-client version 99.0.1 on crates.io was identified as malicious by the OpenSSF Package Analysis project. The package communicates with domains associated with malicious activity and executes commands consistent with malicious behavior.
CargoCompromised package