parcel-plugin-asset-copier

MAL-2025-190984

npmmalware11/24/2025
Description

Malicious code in parcel-plugin-asset-copier (npm)

Indicators of Compromise
SHA256 Hashes (4)
673f23e65b796cf4a1f8f154217b20f06b26d1f7967750091d901380934e2697
344955077c61592ec46c29550b12878886b0b61f3a7c84e050d6d25756f60bf2
e42728295cc2275c35ab041bfdfdad2142156224d4fbdfd267579151fd88834a
f6145ffe2d6b38dc9026fe85b17a49241195565c7383d70aade358ccd4b991ea
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-48jp-f8c9-6wqq
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001