gulp-inject-envs

MAL-2025-191105

npmmalware11/24/2025
Description

Malicious code in gulp-inject-envs (npm)

Indicators of Compromise
SHA256 Hashes (3)
5dafa09839ea07c586670ac1a302805fb65ffaf32d1641dcab2be569a68231f3
76e39a64762012ce36fceca1accb200c9452fb8150739c1d31ed72789a75a7bd
d230a528331dc71aa1fa5cb1d9fd8146d79d7e92f3aae2efd2ce7c177640b337
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-f74h-jm63-v9h3
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001