@posthog/core

MAL-2025-190645

npmmalware11/24/2025
Description

Malicious code in @posthog/core (npm)

Indicators of Compromise
SHA256 Hashes (4)
8fce4f3a908b835a108ad8c30d1f2095f67e065911b353c73d0f9151be9ed6bf
92317c7f15a5eade85fe5c248b9b31870be1b384a5e5455dd3ea546c94c279e4
eb83590dad180f3edd68b6f8ad00730b4bd2344200200e468f43ad7c60bf054c
130eed637d711081add51177e63d0b0884f247b1d59fa97cce0479b485c87cd5
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-3f6v-43gc-g8fr
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001