@asyncapi/modelina

MAL-2025-190638

npmmalware11/24/2025
Description

Malicious code in @asyncapi/modelina (npm)

Indicators of Compromise
SHA256 Hashes (4)
c9054755eb59904231e219528a52d8e83a572a79473f5e8115e2a7bb6a2a98b3
b6021816ea47fd6743ed24c196df8db60f0649e0d5b185ceb9b418ba457b21e3
8b6a206d3885354dfdfce0214a71aa0b041c2a712990f07d629430af97638023
1e0c4ae2b6b45bf0f06819e502fe14d90cb4dbb8e2ba1960c7695e386edaee26
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-8x8q-8r37-g7g5
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001