@ensdomains/cypress-metamask
MAL-2025-190803
npmmalware11/24/2025
Description
Malicious code in @ensdomains/cypress-metamask (npm)
Indicators of Compromise
SHA256 Hashes (5)
cab4b86ed1d6cd6c17668107ae3abc0bbe5bbc6fe156582d0809e77b0512c907
19427e64315a085f7001dff6a896730aa4cce33cf679f6a2da0a8bc61e96fb58
438db41a246affe115dcf7d8c5d2b2552f033ae736821d2c0c4c3b42f2da502e
a854d02edbe1ae8649c74d6af171b18b2fd75aaced12525a4208046d9b6f6bde
94ba569d22b14d43fa3d49e25d5bd0c46cb4b77b44d1115b0b440af39ff8e38f
References (4)
https://github.com/advisories/GHSA-xc86-vfw2-q5gjOSVhttps://www.aikido.dev/blog/shai-hulud-strikes-again-hitting-zapier-ensdomainsOSVhttps://www.wiz.io/blog/shai-hulud-2-0-ongoing-supply-chain-attackOSVhttps://www.stepsecurity.io/blog/sha1-hulud-the-second-coming-zapier-ens-domains-and-other-prominent-npm-packages-compromisedOSV
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-xc86-vfw2-q5gj
Quick Actions