posthog-plugin-hello-world
MAL-2025-190778
npmmalware11/24/2025
Description
Malicious code in posthog-plugin-hello-world (npm)
Indicators of Compromise
SHA256 Hashes (3)
eb8046a64d3196013606a195ea2ac56c4941306cd3f1075619dfe10c983805f6
411e53a1772704343ddb3da6957e8e0ee4e8167ec93030bf27e2247081fddc61
34e08bdafecf68f44af6fd806f06a8d4220c4b6d379f5e3c7f58d51ec96595d5
References (4)
https://github.com/advisories/GHSA-9mwj-fr6x-j3hgOSVhttps://www.aikido.dev/blog/shai-hulud-strikes-again-hitting-zapier-ensdomainsOSVhttps://www.wiz.io/blog/shai-hulud-2-0-ongoing-supply-chain-attackOSVhttps://www.stepsecurity.io/blog/sha1-hulud-the-second-coming-zapier-ens-domains-and-other-prominent-npm-packages-compromisedOSV
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-9mwj-fr6x-j3hg
Quick Actions