@posthog/react-rrweb-player

MAL-2025-190890

npmmalware11/24/2025
Description

Malicious code in @posthog/react-rrweb-player (npm)

Indicators of Compromise
SHA256 Hashes (2)
7639d9bf4c377c1cb1bd2839d92cdc3ebdab0abb25b93f6b79914fc02634c2b4
ac53c9fbac0cd856da9e9679d7999227c60c5701e1769144f2959cc2f2705673
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001