docusaurus-plugin-vanilla-extract

MAL-2025-190956

npmmalware11/24/2025
Description

Malicious code in docusaurus-plugin-vanilla-extract (npm)

Indicators of Compromise
SHA256 Hashes (3)
81e63079f5340750fd57adf86ac03c2bda3893d0565199e7808a89e2d140e5c3
2659e389b89fcdf1fe723b544962764d4f2881cae9694dc4107fbbb4ec077328
d52648cabe36a7b008fecbb09ad6ea51664ad4604751cf139ec7e71c7a432605
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-2cxc-854w-7972
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001