bool-expressions
MAL-2025-190693
npmmalware11/24/2025
Description
Malicious code in bool-expressions (npm)
Indicators of Compromise
SHA256 Hashes (3)
26f720c7eb2f6cce9791d2ffe73797674e5f19882b33308cde262deaa43671eb
ec2dea19a068cf577e39f58533ccea7e2c6b5b0c9850de785f955a8f3304e2c9
c9440ed408de7140b162c5a20cc7d556a4b3030b7d9d1aa4421bc342a391e0ca
References (4)
https://github.com/advisories/GHSA-9c62-j24x-77xvOSVhttps://www.aikido.dev/blog/shai-hulud-strikes-again-hitting-zapier-ensdomainsOSVhttps://www.wiz.io/blog/shai-hulud-2-0-ongoing-supply-chain-attackOSVhttps://www.stepsecurity.io/blog/sha1-hulud-the-second-coming-zapier-ens-domains-and-other-prominent-npm-packages-compromisedOSV
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-9c62-j24x-77xv
Quick Actions