@asyncapi/avro-schema-parser

MAL-2025-190635

npmmalware11/24/2025
Description

Malicious code in @asyncapi/avro-schema-parser (npm)

Indicators of Compromise
SHA256 Hashes (4)
ecba38c05b2f9aa27e985967c88f7debbca1619119604019cfb1f93b5a91e52b
563d7e586605241445ca55919018f95a81d98cbf9599eefa9c812eef9ccd7747
1c2858118cc6f2b2ac80dfb291a10834d04a7cd3702db08d818163826ca9d687
1db7ec5e8be3314b4daf63f38556b49c7a0c9341f0cc1742871b25a329cc193b
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-9vpg-29cm-rvq6
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001