@asyncapi/go-watermill-template

MAL-2025-190714

npmmalware11/24/2025
Description

Malicious code in @asyncapi/go-watermill-template (npm)

Indicators of Compromise
SHA256 Hashes (4)
c7cc965113d2178a117e403bd2bff1fe0ced748ab6bdfb8e2f0dc123c4b46373
88957e3f78294013ec0e22167aec58b8de4dcc65099728725b884c54b6afa328
9256969005ac0bea0f18a5abe83abc7ec66af438bb32cbbdbca6a78431816370
bb673dc215ead105ad2a899c7730b7262a28bbfd6d19b760bfc107b036c0fd87
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-9mx7-r69p-qf3r
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001