sa-id-gen
MAL-2025-191009
npmmalware11/24/2025
Description
Malicious code in sa-id-gen (npm)
Indicators of Compromise
SHA256 Hashes (4)
3f0da651d111107f348b8807e1fabc4c0ad1125e1af1e268745224c9d81c77fc
df00f4b56b9be72c09e3f99938b4c41900b44a98e65eb46896c30209f7f0810d
6d026f21ebedc819658ff1afdabcea8157b6697a7f43a746f1605904deb2ff90
7bd85b05fab5fd3ee5256304972605b4d36f18e879102e2d8e90670be2317689
References (4)
https://github.com/advisories/GHSA-67cw-9phh-xmf8OSVhttps://www.aikido.dev/blog/shai-hulud-strikes-again-hitting-zapier-ensdomainsOSVhttps://www.wiz.io/blog/shai-hulud-2-0-ongoing-supply-chain-attackOSVhttps://www.stepsecurity.io/blog/sha1-hulud-the-second-coming-zapier-ens-domains-and-other-prominent-npm-packages-compromisedOSV
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-67cw-9phh-xmf8
Quick Actions