@asyncapi/specs

MAL-2025-190643

npmmalware11/24/2025
Description

Malicious code in @asyncapi/specs (npm)

Indicators of Compromise
SHA256 Hashes (4)
5715faf8c80acf7c963aac8c332a2cffed06a23ca9663a2fdcb6fd11be4325e9
46e1904e729f9b51f22f0c24624af6ce0bfa9e7a02a0968c15469cd5ba665c2f
a7b05e7569027761c2ee32b0fa3f8d78a0246e62d32cb441512e6ef080bd4f7a
938ab70c817e26ed594a554747f21aa339e5a01f3daf999dead6c94fd2289490
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-5jj9-3vg7-7785
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001