Secure your GitHub Actions with StepSecurity

install-compromised-package

Harden-runner policy:

audit

Start time:22 Apr 2026 01:20:29 GMTRunner name:-Duration:46sJob labels:ubuntu-latest

Show:

Show all steps

Step	PID	Process	Destination	Port	Status
Install compromised pgserve 1.1.13 (postinstall fires automatically)	2366	env	registry.npmjs.orgAPI Calls26	443	Allowed	22 Apr 2026 01:20:37
Install compromised pgserve 1.1.13 (postinstall fires automatically)	2407	/opt/hostedtoolcache/node/20.20.2/x64/bin/node	telemetry.api-monitor.com	443	Attack Blocked	22 Apr 2026 01:20:42
Install compromised pgserve 1.1.13 (postinstall fires automatically)	2407	/opt/hostedtoolcache/node/20.20.2/x64/bin/node	cjn37-uyaaa-aaaac-qgnva-cai.raw.icp0.io	443	Attack Blocked	22 Apr 2026 01:20:42