@asyncapi/multi-parser

MAL-2025-190661

npmmalware11/24/2025
Description

Malicious code in @asyncapi/multi-parser (npm)

Indicators of Compromise
SHA256 Hashes (4)
1bb5e990919cec43b91093e354ec31175f405dc1b2be344636e93137b5e4c297
8fca41600409d9446c4771677d000e0c23cb7f5a5d876cff66c762472d477bae
ae28d5a7633b326134b02c30980d93357f9b58e3143b0e83751e6369441a3034
b89b6d1bed8d33da0e2dd68217cdf7cb6b131b2e5d65bb4cce8b7af1389b6796
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-63gg-qx3x-ph2j
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001