THREAT INTELLIGENCE
AI Package Threat Patterns
Analysis of 56,810 scans reveals specific malicious patterns in AI agent packages
61% use dangerous execution methods
7,624 packages represent the highest threat volume we're tracking
eval() calls
3,354
exec() usage
2,973
Shell commands
1,296
Malicious Pattern Analysis
Credential Theft
26%
3,274 packages attempt to access credentials
SSH Keys1,234
AWS Credentials987
Browser Data1,141
Code Obfuscation
51%
6,342 packages use code obfuscation
Base64 Encoding2,981
Hex Strings1,876
Minified Payloads547
Data Exfiltration
36%
4,518 packages contain data exfiltration
HTTP Requests2,103
DNS Tunneling987
Webhook Calls539
Dynamic Execution
61%
7,624 packages use dangerous execution methods
eval() calls3,421
exec() usage2,987
Shell commands1,302
AI Attacks
10%
1,234 packages contain AI-specific attacks
Prompt Injections1,987
Jailbreak Attempts892
Tool Abuse665
Rising Threats
27.7%
Overall threat detection rate across all scans
This Week+12.3%
New Patterns47
Zero-Days8
Get Threat Intelligence Updates
Weekly threat intelligence reports. Security research, new threat signatures, and product updates. No spam.
Share This Intelligence
Key stats to share:
• Packages Scanned: 56,810
• Threats Found: 15,711
• Install Hooks: 7,606
• Credential Theft: 3,274
Protect Your AI Agents Now
Don't let malicious packages compromise your AI systems. Start scanning with Sigil's free CLI today.