posthog-plugin-hello-world

MAL-2025-190778

npmmalware11/24/2025
Description

Malicious code in posthog-plugin-hello-world (npm)

Indicators of Compromise
SHA256 Hashes (3)
eb8046a64d3196013606a195ea2ac56c4941306cd3f1075619dfe10c983805f6
411e53a1772704343ddb3da6957e8e0ee4e8167ec93030bf27e2247081fddc61
34e08bdafecf68f44af6fd806f06a8d4220c4b6d379f5e3c7f58d51ec96595d5
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-9mwj-fr6x-j3hg
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001