@posthog/url-normalizer-plugin

MAL-2025-190897

npmmalware11/24/2025
Description

Malicious code in @posthog/url-normalizer-plugin (npm)

Indicators of Compromise
SHA256 Hashes (2)
3af45430785d7a562e6a3ccfe29b377e17c6c71d4bbcefa7a8e4fc67e95977c8
844f553091ce5d549c8a651d2dc0f42c287c5ca76ae23cedb9922b3d6183eac1
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001