@asyncapi/server-api

MAL-2025-190801

npmmalware11/24/2025
Description

Malicious code in @asyncapi/server-api (npm)

Indicators of Compromise
SHA256 Hashes (4)
a33212db09f9fc4818a054bde0721879323b7e8896b313c33b1af9e136f4d6d8
228ed250759da1a81a55ea29e65821a583726c0c472d925b0c86d4e44e49e002
0e3f81bd867ef35c3fb884d4991f6cee8567951ce526efc4b9dc3ea87372e65b
03d7c62fa12ae91e08912d9153e732577685bde39475c489d90117412ecd1406
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-4vf7-5v4w-7358
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001