formik-error-focus
MAL-2025-191096
npmmalware11/24/2025
Description
Malicious code in formik-error-focus (npm)
Indicators of Compromise
SHA256 Hashes (3)
8e2fb80ba19c9f6e6070ae03e045435da89201c3a931ece98bd546b859af303e
9b7a687691f6704a6a21b00ec9d7ef0d649f2c6954e77d8775d750a01dedd183
563b1001dfb7ec0dd27e7ac49eeef45e9a82e958b34b3ee74a4d59b1dee79775
References (4)
https://github.com/advisories/GHSA-8fhc-x7mv-mj8fOSVhttps://www.aikido.dev/blog/shai-hulud-strikes-again-hitting-zapier-ensdomainsOSVhttps://www.wiz.io/blog/shai-hulud-2-0-ongoing-supply-chain-attackOSVhttps://www.stepsecurity.io/blog/sha1-hulud-the-second-coming-zapier-ens-domains-and-other-prominent-npm-packages-compromisedOSV
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-8fhc-x7mv-mj8f
Quick Actions