whatisgithub

What is shai-hulud-open-source?

edxeth/shai-hulud-open-source — explained in plain English

Analysis updated 2026-05-18

20TypeScriptAudience · researcherComplexity · 5/5

In one sentence

The published source code of the Shai-Hulud supply chain malware, documented here for security research rather than for use.

Mindmap

mindmap
  root((Shai-Hulud))
    What it does
      Harvests credentials
      Exfiltrates data
      Backdoors npm packages
    Tech stack
      TypeScript
      Bun
    Phases
      Environment check
      Credential harvest
      Encrypt and exfiltrate
      Propagate via npm
      Persistence daemon
    Audience
      Security researchers
      Incident responders

Code map

Detail Auto

An interactive map of this repo's files and how they connect — its source is parsed live in your browser. Click Visualize to build it.

filefunction / class

What do people build with it?

USE CASE 1

Study how a real supply-chain attack harvests credentials from CI/CD pipelines.

USE CASE 2

Research the phases of a documented npm and GitHub Actions credential-stealing malware.

USE CASE 3

Build detection rules for security tooling based on this malware's known behavior.

What is it built with?

TypeScriptBun

How does it compare?

edxeth/shai-hulud-open-sourceadrianhajdin/job_pilotcneuralnetwork/pracdago
Stars202020
LanguageTypeScriptTypeScriptTypeScript
Setup difficultyhardmoderate
Complexity5/54/52/5
Audienceresearcherdevelopervibe coder

Figures from each repo's GitHub metadata at analysis time.

How do you get it running?

This is real attack malware documented for research, running it against systems without authorization is illegal.

So what is it?

This repository contains the published source code of the "Shai-Hulud" supply chain attack malware, which was referenced in a May 2026 SecurityWeek article covering attacks against TanStack, Mistral AI, and UiPath. The README describes it as published for research and educational purposes, but the code is a fully functional attack tool written in TypeScript using Bun. The malware is designed to be injected into CI/CD pipelines (automated software build systems, such as GitHub Actions). Once activated, it operates in five phases. First it checks its environment and either activates immediately or runs silently in the background. Second it harvests credentials in parallel from the filesystem (reading over a hundred known locations including AWS credentials, SSH keys, cryptocurrency wallet files, shell history, and developer tool configs), from environment variables, from GitHub Actions runner process memory, from AWS SSM and Secrets Manager across seventeen regions, from Kubernetes cluster secrets, and from HashiCorp Vault. Third it encrypts the harvested data with AES-256 and exfiltrates it to a command-and-control server, with fallback channels including GitHub repositories. Fourth it propagates by backdooring npm packages, either through GitHub's OIDC token exchange or by injecting malicious code into packages the stolen npm tokens can publish to, and by committing malicious files into GitHub repositories. Fifth it installs a persistence daemon that acts as a dead man's switch: if a stolen token is revoked, it attempts to delete the victim's home directory. The repository is included here solely to document what the malware does. Installing or running it against systems without authorization would be illegal.

Copy-paste prompts

Prompt 1
Explain the five phases of the Shai-Hulud malware in plain terms for a security review.
Prompt 2
What defensive measures would stop this malware's credential-harvesting step?
Prompt 3
Summarize how this malware propagates through npm packages and GitHub Actions.
Prompt 4
What indicators of compromise should a security team look for based on this malware's behavior?

Frequently asked questions

What is shai-hulud-open-source?

The published source code of the Shai-Hulud supply chain malware, documented here for security research rather than for use.

What language is shai-hulud-open-source written in?

Mainly TypeScript. The stack also includes TypeScript, Bun.

Who is shai-hulud-open-source for?

Mainly researcher.

Open on GitHub → Ask about another repo

This repo across BitVibe Labs

Verify against the repo before relying on details.