react-native-websocket

MAL-2025-191006

npmmalware11/24/2025
Description

Malicious code in react-native-websocket (npm)

Indicators of Compromise
SHA256 Hashes (3)
bc8e0788790181b5410794ec84d6605fd128b64b79ff4e36dac5cccb9917dfa4
f48d8c015af60bd1c1cbe48b9005dbbde091d8abc3763d25544d978b8b133094
9d65f76328737c1b1f2fe38fa9fc65e0d36931a1a440a4e33e3723133c1d0690
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-mjmr-345m-q4j2
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001