@oku-ui/primitives
MAL-2025-191041
npmmalware11/24/2025
Description
Malicious code in @oku-ui/primitives (npm)
Indicators of Compromise
SHA256 Hashes (3)
55dbe80b72b5112717f8514554db1095334e0757ce7416dde0e77abecb3cfd46
4c4a74bdb0ea1f1f1b9092b53d680498e7f3a43abb1930355d1fab8a49840264
48684386017546a6d1cc3afd6317d995fe7edc730db2789b79af9135d8f88191
References (4)
https://github.com/advisories/GHSA-vg47-hfgj-8573OSVhttps://www.aikido.dev/blog/shai-hulud-strikes-again-hitting-zapier-ensdomainsOSVhttps://www.wiz.io/blog/shai-hulud-2-0-ongoing-supply-chain-attackOSVhttps://www.stepsecurity.io/blog/sha1-hulud-the-second-coming-zapier-ens-domains-and-other-prominent-npm-packages-compromisedOSV
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-vg47-hfgj-8573
Quick Actions