{
  "title": "Phantom Gyp npm Worm Abuses node-gyp Build Hooks",
  "summary": "Snyk disclosed a June 2026 npm supply-chain wave that abuses native-addon build behavior through binding.gyp and node-gyp. The Phantom Gyp/Miasma activity affects packages including @vapi-ai, abandoned-package, and autotel packages and should be handled as install-time credential exposure.",
  "date": "2026-06-05",
  "severity": "critical",
  "tags": [
    "npm",
    "node-gyp",
    "supply-chain",
    "credential-theft",
    "ci-cd"
  ],
  "sources_count": 4,
  "indicators": {
    "slug": "node-gyp-phantom-gyp-npm-worm",
    "since": "2026-06-05T00:00:00Z",
    "until": "2026-06-05T23:59:59Z",
    "ecosystem": "npm",
    "cves": [],
    "cwes": [],
    "advisoryIds": [],
    "products": [],
    "packages": [
      "@vapi-ai/server-sdk@0.7.1",
      "@vapi-ai/server-sdk@0.7.2",
      "@vapi-ai/server-sdk@0.7.3",
      "@vapi-ai/web@2.3.1",
      "@vapi-ai/web@2.3.2",
      "@jagreehal/builder@1.0.0",
      "abandoned-package@1.0.0",
      "abandoned-package-2@1.0.0",
      "autotel-terminal@0.0.1",
      "autotel-client@0.0.1",
      "autotel-trpc@0.0.1"
    ],
    "versions": [],
    "affectedVersions": [],
    "fixedVersions": [],
    "files": [
      "binding.gyp",
      "package.json",
      "package-lock.json",
      "pnpm-lock.yaml",
      "yarn.lock",
      "bun.lock"
    ],
    "paths": [],
    "services": [],
    "domains": [],
    "urls": [],
    "ips": [],
    "hashes": [],
    "processPatterns": [
      "node-gyp rebuild",
      "npm install lifecycle script",
      "native addon build executing during dependency install"
    ],
    "networkPatterns": [],
    "telemetrySelectors": [
      "Phantom Gyp",
      "Miasma",
      "The Spreading Blight",
      "binding.gyp",
      "ACTIONS_ID_TOKEN_REQUEST_TOKEN",
      "NPM_TOKEN",
      "NODE_AUTH_TOKEN"
    ]
  }
}