A new tutorial has been added to https://github.com/step-security/supply-chain-goat/blob/main... to perform behavior analysis of dependencies.

For this a package was needed to simulate behavior of past hijacked packages. https://www.npmjs.com/package/@step-security/malware-simulat... makes an outbound call in a preinstall step.

You can think of the @step-security/malware-simulator package being like the EICAR file, which is used as a test file for anti-virus software.

Can be used to test if you can detect packages that make outbound calls, which is a common theme for hijacked packages.