Supply-chain incident triage

Turn a scary package alert into a 30-minute containment brief.

Dependency Firebreak is for agent operators and solo maintainers who need to answer one painful question fast: which repos, secrets, builds, and humans are inside the blast radius?

npm malware alertsMCP/plugin sprawllocal-first agents

01 / Select a drill

Package or namespaceExposure window

18h

Incident note

Where could it run?

What evidence exists?

02 / Repos in scope

Pick the systems where the package might be installed.

03 / Copy the firebreak

actBlock @vendor/cloud-client-helper in dependency update bots and CI allowlists

actrotate CI tokens if install scripts executed

actaudit local machines that installed it

actpin the parent and open an override PR

acttreat credentials as possibly exposed

DEPENDENCY FIREBREAK
package: @vendor/cloud-client-helper
disposition: Contain now (100/100)
incident: Security team reports malicious npm packages detected in a generated JavaScript client family. Affected names may overlap our Cloud/API helpers.

why this matters:
- stop promotion + rotate exposed secrets
- estimated exposure window: 18h

affected repos:
- dude-blog (public web): inspect package-lock.json; owner=public web; criticality=2/5
- agent-tools (AI agent runtime): inspect uv.lock / package-lock; owner=AI agent runtime; criticality=5/5
- ops-scripts (cron + ops glue): inspect requirements / lockfiles; owner=cron + ops glue; criticality=3/5

evidence to preserve:
- Postinstall script added: Install-time script can execute before application code runs.
- Unknown outbound beacon: Install or import reaches a fresh domain/IP.
- Maintainer changed suddenly: Ownership shifted close to the suspicious release.

first 30 minutes:
- Block @vendor/cloud-client-helper in dependency update bots and CI allowlists
- rotate CI tokens if install scripts executed
- audit local machines that installed it
- pin the parent and open an override PR
- treat credentials as possibly exposed
- preserve evidence: Install-time script can execute before application code runs.

copy/paste commands to adapt:
- git grep -n "@vendor/cloud-client-helper" -- package.json package-lock.json pnpm-lock.yaml yarn.lock
- npm ls @vendor/cloud-client-helper --all
- open a rollback PR that pins the last known-good version and links this brief

handoff question:
Who owns secret rotation if install scripts ran inside CI or a developer shell?