esbuild-plugin-httpfile

MAL-2025-190771

npmmalware11/24/2025
Description

Malicious code in esbuild-plugin-httpfile (npm)

Indicators of Compromise
SHA256 Hashes (3)
42a4501103968b8ae8148c63ca137f6aabf50d2239fcfc6adfc4934fdd43a73b
efc9c8640b4324e3d5e06e51fa01e3029117ab9121c0baa55b1f81b1b73019a8
97c5f446d9cffa36b917cbceb6a80c648c0a71bbdd949d074bc1e93b2708fb02
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-jc9c-xf8q-rwgh
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001