@asyncapi/python-paho-template

MAL-2025-190720

npmmalware11/24/2025
Description

Malicious code in @asyncapi/python-paho-template (npm)

Indicators of Compromise
SHA256 Hashes (4)
8733bbb946cf955fa0a1e85ad52452e15b2e9cfd5328634e4dae994d8f1ae10e
9b7e91afb25619c373d083857f06f65945216536aa6308326de63dd33458f72c
9d8e92b8825fb6098c6a7a3034200280311e64a5974f194f1e750dcb1826d0e7
36c4e788927e6303864c6d846bd72901f8745312514c543945972e6ebdf1d9c6
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-pw9c-2xp8-8673
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001